Detection Engineer
Hawthorne, CA or Redmond, WA or Washington, DC
SpaceX
SpaceX designs, manufactures and launches advanced rockets and spacecraft. The company was founded in 2002 to revolutionize space technology, with the ultimate goal of enabling people to live on other planets.SpaceX was founded under the belief that a future where humanity is out exploring the stars is fundamentally more exciting than one where we are not. Today SpaceX is actively developing the technologies to make this possible, with the ultimate goal of enabling human life on Mars.
DETECTION ENGINEER
SpaceX is looking for a detection engineer to join the information security team to help protect and drive the SpaceX mission. Information drives our business and we must protect the confidentiality, integrity, and availability of systems and processes across the enterprise. As a highly visible and dynamic organization, we must also value and guard against damage to our reputation and brand. Finally, it is paramount we defend against loss of control or confidence in our systems, to guarantee the highest probability of success. SpaceX information security detection engineers are responsible for building tailored security detections.
RESPONSIBILITIES:
- Work closely with the Security Operations Center (SOC) and engineering teams to improve and build new tailored security detections.
- Build playbooks to properly triage and respond to security incidents.
- Analyze SOC alert statistics and workflows to reduce false positives and properly focus engineering efforts.
- Provide design support on ways to improve detection and response capabilities.
- Provide back-up support to the incident response team when necessary.
- Keep up-to-date on modern attack techniques to continually integrate knowledge into new detections.
- Operate and help mature SOC playbooks, workflow automations, and use cases to protect SpaceX people, missions, and assets.
BASIC QUALIFICATIONS:
- Bachelor's degree in information technology, information security, computer science; OR 2+ years of professional experience in information security developing detections for attacker tactics, techniques, and procedures (TTPs) in lieu of a degree.
- Experience writing and tuning host and network detections.
PREFERRED SKILLS AND EXPERIENCE:
- Experience with scripting languages (Python/PowerShell) for automation.
- Experience with Jupyter notebooks.
- Experience with operating system internals for Linux and/or Windows platforms.
- Experience with modern security information and event management (SIEM) systems such as Splunk and/or ELK.
- Experience automating security operations and incident response processes.
- Strong understanding of security architecture, tool integration, and API development/automation.
- Knowledge of cloud infrastructure and cloud security.
- Reverse engineering and malware analysis.
- Vulnerability research and penetration testing.
ADDITIONAL REQUIREMENTS:
- Must be able to work extended hours and weekends as needed.
ITAR REQUIREMENTS:
- To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here.
SpaceX is an Equal Opportunity Employer; employment with SpaceX is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.
Applicants wishing to view a copy of SpaceX’s Affirmative Action Plan for veterans and individuals with disabilities, or applicants requiring reasonable accommodation to the application/interview process should notify the Human Resources Department at (310) 363-6000.
Tags: APIs Automation C Cloud Computer Science ELK Incident response Linux Malware Pentesting PowerShell Python Reverse engineering Scripting SIEM SOC Splunk TTPs Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs