Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: InfoSec Jobs - Incident Response Engineer London GCIH InfoSec Jobs


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Incident Response Engineer
Company Facebook
Location London
Preferred GIAC Certifications GCIH
Travel 0%
Salary Not provided
URL https://www.facebook.com/careers/jobs/613656802496467/
Contact Name Anonymous
Contact Email tgager/at/fb.com
Expires 2020-01-02

Job Description

Facebook's Security team is looking for an Incident Response Engineer with extensive experience in identifying, scoping, containing and eradicating real-world threats. We advance Facebook's mission of making the world more open and connected by identifying and neutralizing threats that aim to collect sensitive information or disrupt our infrastructure. Candidates are expected to translate their skills into goal oriented projects that improve identification and response time and reduce functional or informational impact when an incident occurs. Those with a desire to just wait for an incident to occur or to 'shoot from the hip' need not apply.
RESPONSIBILITIES
Further develop our incident response program
Respond to compromised assets (phones, laptops, servers) in our Corporate and Production environments around the world
Identify and execute on projects that improve our intrusion detection and incident response capabilities at Facebook scale
Perform research to identify new ways of achieving our mission, with an emphasis on open-sourcing tools or process wherever possible.

MINIMUM QUALIFICATIONS
* Experience in identifying, analyzing, scoping, containing and eradicating real-world threats
* Knowledge of incident response phases and concepts
* Experience with scripting and/or coding. Open source projects or commits
* 3+ years experience in developing, responding and analyzing technical security incident response
* 3+ years experience with networking

PREFERRED QUALIFICATIONS
Experience with Linux and MacOS investigations