Sr. Security Engineer (Threat Detection)
Hawthorne, CA or Redmond, WA or Washington, DC
SpaceX
SpaceX designs, manufactures and launches advanced rockets and spacecraft. The company was founded in 2002 to revolutionize space technology, with the ultimate goal of enabling people to live on other planets.SpaceX was founded under the belief that a future where humanity is out exploring the stars is fundamentally more exciting than one where we are not. Today SpaceX is actively developing the technologies to make this possible, with the ultimate goal of enabling human life on Mars.
SR. SECURITY ENGINEER (THREAT DETECTION)
SpaceX is targeted by sophisticated adversaries determined to attain or disrupt the cutting-edge technology it develops. The security operations team is seeking technically excellent engineers with a strong understanding of these adversaries. The environment in which you will operate is used to launch rockets and control spacecraft. You will be tasked with detecting threat actors in this environment before they can disrupt or deny SpaceX’s mission.
Your output will be detections and detection mechanisms that provide comprehensive coverage of both known and unknown threats. Your work will involve writing structured queries against large datasets of endpoint and network telemetry, as well as building custom threat detection tooling and frameworks. We encourage the continual practice of adversary emulation to identify novel detections as well as validate the effectiveness of our threat detection posture. If you are interested in detecting and disrupting sophisticated threat actors in order to secure SpaceX’s mission to Mars, let’s talk!
RESPONSIBILITIES:
- Build security detections and detection frameworks.
- Perform adversary emulation activities to identify detection gaps in the environment.
- Research emerging adversary techniques and tooling, using the knowledge gained to build novel detections.
- Engage with relevant owners of high-risk systems and services to identify and prioritize detection gaps.
- Investigate anomalous or suspicious behavior in the environment as it is identified in the detection engineering process.
BASIC QUALIFICATIONS:
- Bachelor's degree in computer science, engineering, or information security discipline and 5+ years of professional experience related to researching, performing, or detecting attacker tactics, techniques, and procedures (TTPs); OR 7+ years of professional experience related to researching, performing, or detecting TTPs in lieu of a degree.
- Experience with one or more of the following programming languages: Python, PowerShell, Go, C/C++, Rust.
PREFERRED SKILLS AND EXPERIENCE:
- Experience with operating system internals for Windows, Linux, and/or macOS.
- Vulnerability research and exploit development.
- Experience with offensive security frameworks and tooling.
- Malware analysis and memory forensics.
- Experience with modern Security Information and Event Management (SIEM) systems.
- Knowledge of cloud infrastructure and security implications of hybrid environments.
ADDITIONAL REQUIREMENTS:
- Must be able to work extended hours and weekends as needed.
ITAR REQUIREMENTS:
- To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here.
SpaceX is an Equal Opportunity Employer; employment with SpaceX is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.
Applicants wishing to view a copy of SpaceX’s Affirmative Action Plan for veterans and individuals with disabilities, or applicants requiring reasonable accommodation to the application/interview process should notify the Human Resources Department at (310) 363-6000.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: C C++ Cloud Computer Science Exploit Forensics Linux MacOS Malware Offensive security PowerShell Python Rust SIEM Threat detection TTPs Windows
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs