CSIRT Incident Response Engineer

Location:

Netanya, Israel
Requisition Number:
R0047728

eBay is a global commerce leader that allows you to shape how the world buys, sells, and gives. You’ll be part of a work culture that’s been genuinely committed to diversity and inclusion since its founding more than 20 years ago. Here, you can just be yourself, do your best work, and have a significant impact on people across the globe. We are looking for people with drive, ideas, and a passion for helping small businesses succeed to help shape the future of eBay—does this sound like you? If so, we’d love to talk to you!

eBay is seeking a CSIRT IR Engineer to join our highly visible Cyber Security Incident Response Team that provides Security Operations Center (SOC) support, cyber analysis, scripting and automation, and a 24x7x365 support staff. This specific position requires the ability to work Swing and/or Graveyard shifts with rotations into Day shift.

Working within eBay’s Computer Security Incident Response Team (CSIRT) you will have the opportunity to build innovative solutions to identify and mitigate information-security threats. You will work closely to creatively solve complex security problems in a heterogeneous environment. With your contributions, we’re building the best security incident response team in the industry. Your skills, vision, resourcefulness, and passion will help us defend and respond daily to keep eBay’s critical information assets away from threats and hackers.

Candidates must have extensive experience working with various security methodologies and processes, sophisticated knowledge of TCP/IP protocols, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices.

Must demonstrate expert knowledge in Incident Response and one or more of the following areas:

Threat Hunting, Digital Forensics, Monitoring and Detection, Cyber Intelligence Analysis, Data Loss Prevention

Core Job Functions Include:

  • Investigations – Investigating computer and information security incidents to determine extent of compromise to information and automated information systems, must be familiar with notable event triage, Host Forensics, Network Analysis.

  • Escalations – Responding to escalated notable events from security tooling to develop/execute security controls, Defense/countermeasures to prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems.

  • Research – Researching attempted or successful efforts to compromise systems security and designs countermeasures. Stay educated on latest trends, techniques, tactics and procedures.

  • Communications – Provides information and updates to shift leads, builds pass-downs for the next shift, works closely with supporting teams, provides feedback for new security policy and standards, and engages with other teams.

  • Digital Forensics – As it relates to information systems, performs HR investigations and legal holds in a forensically sound manner. Consults with HR and legal domain specialists to adhere to local country laws.

  • Coverage – Must be willing and able to perform shift work, weekends, and holidays as well as participate in a rotating shift consisting of four (4) 10 hour shifts with four days on, three (3) days off and rotations across Day, Swing, and Graveyard shifts as needed.

To be successful in this position, you are proficient with:

  • Incident Response – Getting people to do the right thing in the middle of an investigation.

  • Offensive Techniques – Penetration testing, IOCs, and exploits at all layers of the stack. Need to be very familiar with real world scenarios and current attacker behavior.

  • Logs - you are very comfortable with a SEIM to be able to gather and analyze logs to recreate incidents seeking for threats. Should have experience developing and tuning detection logic.

  • System Forensics – Understanding of image acquisition techniques, memory forensics, host forensics.

  • Networking Fundamentals - TCP/IP Protocols and associated analysis tools eg. Wireshark/TCPDump.

  • Scripting – Should be familiar in scripting in at least one of the following: BASH, Python, Perl or a similar language.

  • Risk Analysis – Taking an event in a particular environment and understanding the practical associated risk is a critical part of our jobs.

  • Automation – Crafting and/or modifying scripts to automate repetitive and mundane tasks, freeing up time to focus on sophisticated investigations and other projects.

  • Enterprise Security - Should be familiar with enterprise security issues, working at scale.

Required Qualifications:

  • Minimum five (5) years of professional experience in incident detection and response, malware analysis, digital forensics.

Benefits:

Benefits are an essential part of your total compensation for the work you do every day. Whether you’re single, in a growing family, or nearing retirement, eBay offers a variety of comprehensive and competitive benefit programs to meet your needs. Including maternal & paternal leave, paid sabbatical, and plans to help ensure your financial security today and in the years ahead because we know feeling financially secure during your working years and through retirement is important.

Here at eBay, we love creating opportunities for others by connecting people from widely diverse backgrounds, perspectives, and geographies. So, being diverse and inclusive isn’t just something we strive for, it is who we are, and part of what we do each and every single day. We want to ensure that as an employee, you feel eBay is a place where, no matter who you are, you feel safe, included, and that you have the opportunity to bring your unique self to work. To learn about eBay’s Diversity & Inclusion click here: https://www.ebayinc.com/our-company/diversity-inclusion/.

#LI-ND1

#glassdoor

#SO #standard   

eBay Inc. is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talent@ebay.com.  We will make every effort to respond to your request for disability assistance as soon as possible.

For more information see:  EEO is the Law Poster and EEO is the Law Poster Supplement

This website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies

View our privacy policy and accessibility info

CSIRT Incident Response Engineer

Netanya, Israel Requisition Number R0047728 Subsidiary eBay

eBay is a global commerce leader that allows you to shape how the world buys, sells, and gives. You’ll be part of a work culture that’s been genuinely committed to diversity and inclusion since its founding more than 20 years ago. Here, you can just be yourself, do your best work, and have a significant impact on people across the globe. We are looking for people with drive, ideas, and a passion for helping small businesses succeed to help shape the future of eBay—does this sound like you? If so, we’d love to talk to you!

eBay is seeking a CSIRT IR Engineer to join our highly visible Cyber Security Incident Response Team that provides Security Operations Center (SOC) support, cyber analysis, scripting and automation, and a 24x7x365 support staff. This specific position requires the ability to work Swing and/or Graveyard shifts with rotations into Day shift.

Working within eBay’s Computer Security Incident Response Team (CSIRT) you will have the opportunity to build innovative solutions to identify and mitigate information-security threats. You will work closely to creatively solve complex security problems in a heterogeneous environment. With your contributions, we’re building the best security incident response team in the industry. Your skills, vision, resourcefulness, and passion will help us defend and respond daily to keep eBay’s critical information assets away from threats and hackers.

Candidates must have extensive experience working with various security methodologies and processes, sophisticated knowledge of TCP/IP protocols, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices.

Must demonstrate expert knowledge in Incident Response and one or more of the following areas:

Threat Hunting, Digital Forensics, Monitoring and Detection, Cyber Intelligence Analysis, Data Loss Prevention

Core Job Functions Include:

  • Investigations – Investigating computer and information security incidents to determine extent of compromise to information and automated information systems, must be familiar with notable event triage, Host Forensics, Network Analysis.

  • Escalations – Responding to escalated notable events from security tooling to develop/execute security controls, Defense/countermeasures to prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems.

  • Research – Researching attempted or successful efforts to compromise systems security and designs countermeasures. Stay educated on latest trends, techniques, tactics and procedures.

  • Communications – Provides information and updates to shift leads, builds pass-downs for the next shift, works closely with supporting teams, provides feedback for new security policy and standards, and engages with other teams.

  • Digital Forensics – As it relates to information systems, performs HR investigations and legal holds in a forensically sound manner. Consults with HR and legal domain specialists to adhere to local country laws.

  • Coverage – Must be willing and able to perform shift work, weekends, and holidays as well as participate in a rotating shift consisting of four (4) 10 hour shifts with four days on, three (3) days off and rotations across Day, Swing, and Graveyard shifts as needed.

To be successful in this position, you are proficient with:

  • Incident Response – Getting people to do the right thing in the middle of an investigation.

  • Offensive Techniques – Penetration testing, IOCs, and exploits at all layers of the stack. Need to be very familiar with real world scenarios and current attacker behavior.

  • Logs - you are very comfortable with a SEIM to be able to gather and analyze logs to recreate incidents seeking for threats. Should have experience developing and tuning detection logic.

  • System Forensics – Understanding of image acquisition techniques, memory forensics, host forensics.

  • Networking Fundamentals - TCP/IP Protocols and associated analysis tools eg. Wireshark/TCPDump.

  • Scripting – Should be familiar in scripting in at least one of the following: BASH, Python, Perl or a similar language.

  • Risk Analysis – Taking an event in a particular environment and understanding the practical associated risk is a critical part of our jobs.

  • Automation – Crafting and/or modifying scripts to automate repetitive and mundane tasks, freeing up time to focus on sophisticated investigations and other projects.

  • Enterprise Security - Should be familiar with enterprise security issues, working at scale.

Required Qualifications:

  • Minimum five (5) years of professional experience in incident detection and response, malware analysis, digital forensics.

Benefits:

Benefits are an essential part of your total compensation for the work you do every day. Whether you’re single, in a growing family, or nearing retirement, eBay offers a variety of comprehensive and competitive benefit programs to meet your needs. Including maternal & paternal leave, paid sabbatical, and plans to help ensure your financial security today and in the years ahead because we know feeling financially secure during your working years and through retirement is important.

Here at eBay, we love creating opportunities for others by connecting people from widely diverse backgrounds, perspectives, and geographies. So, being diverse and inclusive isn’t just something we strive for, it is who we are, and part of what we do each and every single day. We want to ensure that as an employee, you feel eBay is a place where, no matter who you are, you feel safe, included, and that you have the opportunity to bring your unique self to work. To learn about eBay’s Diversity & Inclusion click here: https://www.ebayinc.com/our-company/diversity-inclusion/.

#LI-ND1

#glassdoor

#SO #standard   

eBay Inc. is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talent@ebay.com.  We will make every effort to respond to your request for disability assistance as soon as possible.

For more information see:  EEO is the Law Poster and EEO is the Law Poster Supplement

This website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies

View our privacy policy and accessibility info