What are the responsibilities and job description for the Insider Threat, Security Engineer position at X?
Are you prepared to join the X team and help build the ultimate real-time information-sharing app, revolutionizing how people connect? At X, we’re on a mission to become the trusted global digital public square, committed to protecting freedom of speech and building the future unlimited interactivity. Our goal is to empower every user to freely create and share ideas, fostering open public discourse without barriers. Join us in shaping this thrilling journey where your contribution will be invaluable to our success!
Insider Threat, Security Engineer (All Levels)
Are you prepared to join the X team and help build the ultimate real-time information-sharing app, revolutionizing how people connect? At X, we’re on a mission to become the trusted global digital public square, committed to protecting freedom of speech and building the future unlimited interactivity. Our goal is to empower every user to freely create and share ideas, fostering open public discourse without barriers. Join us in shaping this thrilling journey where your contribution will be invaluable to our success!
Insider Threat, Security Engineer (All Levels)
Take the next step in your career now, scroll down to read the full role description and make your application.
Location : Palo Alto or San Jose
Salary Range (US locations only) : $127,000 to $297,000 Equity
Who We Are :
X serves our community of users and customers by working tirelessly to preserve free expression and choice, create limitless interactivity, and create a marketplace that enables the economic success of all its participants.
What You’ll Do :
As an Insider Threat Security Analyst on the Insider Threat team you will be charged with the triage and analysis of all incoming detection alerts from a variety of tools in our tech stack. You will work closely with the Insider Threat engineering and investigations team to understand current threats and gaps, escalate appropriate threats to Insider Threat investigators, and develop / tune detections to best protect X. This role will work closely with Insider Threat engineering and analyst teams as well as cross-functionally with other X teams like Product, Data Privacy, Trust and Safety, and other internal stakeholders. This role requires established cybersecurity skills as well as expertise in threat identification and analysis.
Improve our capabilities to effectively detect and respond to internal threats and security incidents
Posses an automation-first mindset
Leverage threat modeling and analysis to build event and / or behavioral based detections to protect our critical assets and infrastructure
Perform analysis of logs from a variety of sources (e.g., endpoint logs, application logs, network traffic logs) to identify potential insider threats
Perform actions that auto-resolve false positives and provide context scaling our ability to investigate
Identify gaps in our infrastructure, and work with software engineers, analysts, investigators, and stakeholders to gain visibility through logging and detection
Perform live response, digital forensics, and analysis of a wide variety of assets including endpoints, mobile, servers and networking equipment
Conduct insider threat investigations in a cross-functional environment and drive incident resolution
Who You Are :
You care about security and ensuring the safety of both the X workforce and the X platform. You are curious, comfortable digging into the details, have experience with the tools of the trade, and are eager to help others protect our data, systems, people, and facilities. Ideally, you have many of the following (but need not have all) :
Bachelor’s degree in Computer Science / Engineering, or relatable experience / certificates (GIAC Certified Forensic Analyst (GCFA), GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Forensic Examiner (GCFE))
Coding proficiency in Python & SQL
Experience in commercial Endpoint Detection Response (EDR), Security Orchestration Automation Tools (SOAR), and a familiarity with security automation workflows
Networking and system administration experience of server and operating systems (macOS, Linux, Windows)
Experience in Gsuite Administration, and JIRA. Familiar with multiple commercial & open-source forensic tools to perform analysis and / or memory collection
Experience in data ingestion in Splunk, Clickhouse, Grafana, and simple storage service, as well as dashboard creation.
Experience with anomaly detection applicable to the insider threat detection space
1- 2 years incident response experience and / or insider threat experience
1- 2 years of cybersecurity operational experience
If you thrive in a dynamic, high-growth tech environment and relish the opportunity to collaborate with passionate, driven over-achievers, your career with us here at X will be both exhilarating and fulfilling!
Find even more open roles below ordered by popularity of job title or skills / products / technologies used.
J-18808-Ljbffr
Salary : $127,000 - $297,000
