Paranoids Senior Security Countermeasures Engineer

Oath Inc - Dulles, VA3.8

Full-timeEstimated: $120,000 - $170,000 a year
It takes powerful technology to connect our brands and partners with an audience of 1 billion. Nearly half of Verizon Media employees are building the code and platforms that help us achieve that. Whether you’re looking to write mobile app code, engineer the servers behind our massive ad tech stacks, or develop algorithms to help us process 4 trillion data points a day, what you do here will have a huge impact on our business—and the world. Want in? As Verizon’s media unit, our brands like Yahoo, TechCrunch and HuffPost help people stay informed and entertained, communicate and transact, while creating new ways for advertisers and partners to connect. With technologies like XR, AI, machine-learning, and 5G, we’re transforming media for tomorrow, too. We're creators and coders, dreamers and doers creating what's next in content, advertising and technology.
When you impact millions of people every day, you become a large target for adversaries in all layers of the stack. Our job is to keep our users safe and make VZM one of the safest places on the Internet.

We are the information security team at Verizon Media. People call us “ The Paranoids ”.

Specifically, we are the Threat Operations team - we provide targeted, highly-relevant threat intelligence to support security operations and incident response activities to keep over 1B members and their information safe.

You are an experienced security engineer who will operationalize threat intelligence to create and tune security monitoring and automate response — within the Paranoids. You are knowledgeable on security alerting tools and technologies (SIEM, IDS/IPS, anti-malware, etc.) as well as security orchestration and automation and can translate indicators of compromise (IOCs) into actionable alerts with automated response. You are constantly looking to improve the speed, effectiveness and quality of security alerting to identify threats faster and stop them from achieving their objectives.

Your Day

Engage with Cyber Threat Intelligence (CTI), Incident Response, Security Operations, Insider Threat and other Paranoids teams.

Create detection logic tailored to the enterprise threat landscape using industry-specific intelligence and developed use cases.

Work closely with the Security Operations team to automate the collection of supporting information for alert analysis and resulting defensive response.

Develop relationships with CTI and IR to enhance hunt capabilities.

Respond to high-priority requests for information/hunts from senior stakeholders

Manage and update Countermeasures Procedures as needed

You Must Have

BA/BS or MA/MS in Engineering, Computer Science, Information Security, or Information Systems required (or equivalent years of experience) and 2+ years of experience in one or more of the following specific areas: proactive and reactive hunt techniques, zero-day exploit activities, malware identification

Strong knowledge of network monitoring and network exploitation techniques

Experience with common attack vectors, including advanced adversaries (nation state/financial motivation)

Knowledge around common web application attacks including SQL injection, cross-site scripting, invalid inputs and forceful browsing

Ability to demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, and solution orientation and to learn and adapt quickly

Ability to learn and operate in a dynamic environment

Knowledge of how common protocols and applications work at the network level, including DNS & HTTP

Strong written and verbal communication skills

Preferred certifications include, CEH, GCIA, GCIH or similar

Desired Knowledge

Experience with scripting or programming, including Perl, Python, C, C++, C#, Java, Bash/Shell, Powershell, or Batch is a plus

Experience working in a SOC environment

Experience managing or developing detection logic for enterprise SIEM systems

Experience with exploitation techniques and use case development

Experience with IOC datasets (e.g., YARA, OpenIOC, STIX)

Oath is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on, age, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or any other protected category. Oath is dedicated to providing an accessible environment for all candidates during the application process and for employees during their employment. Please let us know if you need a reasonable accommodation to apply for a job or participate in the application process.

Currently work for Oath? Please apply on our internal career site.