You will be a key member of our growing Threat Detection & Response (TDR) EMEA team.
You will get an opportunity to define and execute on novel approaches to detecting, containing and mitigating threats and incidents.
You will partner with cross-functional partners across the company to improve the overall security of Airbnb driven by learnings and root cause analysis of investigations and incidents resulting in removal of entire classes of problems.
A Typical Day:
Investigation & Response: Perform investigations of security incidents using your knowledge and understanding of digital forensic artifacts, log data analysis and/or developing automation for investigation & response capabilities that scale.
Incident Handling: Coordinate and drive resolution on a diverse range of incidents as part of an on-call team. Analyse root causes, trends and systematic issues.
Detection Engineering: Create and automate threat detection and hunting based on indicators observed during incident response or from other threat intelligence.
Technical Leadership: Help define and execute strategy for threat detection and incident response.
Influence & Communication: Collaborate well with cross-functional partner teams, such as Legal, Privacy, and Engineering for efficient, large-scale response.
Your Expertise:
5+ years of hands-on technical experience in security engineering, systems engineering, software engineering, network engineering, or privacy engineering.
3+ of those years of experience in incident response including host and cloud forensics, incident management, threat intelligence, threat hunting, and/or security detection.
Bachelor's degree in a related technical field or equivalent practical experience.
Ability to lead people in complex, ambiguous situations through influence and not authority.
Ability to work calmly and collaboratively in critical situations with expediency.
Outstanding organisational, prioritisation, and multitasking skills.
Experience automating security detection and response.
We are not focused on specific tools but we often use Python, AWS, SQL, and more.