Security Engineer III

India - Gurgaon

Expedia Group

Let’s transform travel together.

View all jobs at Expedia Group

Apply now Apply later

Expedia Group brands power global travel for everyone, everywhere. We design cutting-edge tech to make travel smoother and more memorable, and we create groundbreaking solutions for our partners. Our diverse, vibrant, and welcoming community is essential in driving our success.

Why Join Us?

To shape the future of travel, people must come first. Guided by our Values and Leadership Agreements, we foster an open culture where everyone belongs, differences are celebrated and know that when one of us wins, we all win.

We provide a full benefits package, including exciting travel perks, generous time-off, parental leave, a global hybrid work setup (with some pretty cool offices), and career development resources, all to fuel our employees' passion for travel and ensure a rewarding career journey. We’re building a more open world. Join us.

Security Engineer III – Detection Operations, Gurgaon 

Are you someone who has solid background in the information security profession with a passion for protecting an organization’s computers, networks and data against computer viruses, security breaches and malicious attack? If so, we want to talk with you. As a Security Engineer you’ll be a key Player of a growing team chartered with improving and maturing the security poster of Expedia Group while protecting corporate & traveler’s data. Your work will be instrumental in, not only, improving the security of company but testing cycle times but also in ensuring that all solutions complement one another and function seamlessly.

The ideal candidate would be open to new challenges, be extremely good at multi-tasking, be innovative, creative, disciplined and an outstanding teammate. The candidate would be comfortable driving continuous process improvement and collaborating effectively across teams to take on problems and implement new solutions.

What You’ll Do

  • You’ll be responsible to maintain and enhance when needed the overall daily operations of the Enterprise Risk & Security team providing 24/7 security support.

  • Lead Security personnel in the monitoring and management of security processes and technologies that reduce or remove security related risk in support of the enterprise and in compliance with regulatory requirements.

  • Lead the activities of the security and threat detection departments.

  • Support all aspects of a security event monitoring and incident response process.

  • Seek continuous improvement of security events and proactively oversees research to identify emerging threats.

  • Serve as domain expert on Detection Operations technologies, provide recommendations on new/emerging technologies, and ensure proper operation of all security systems and process.

  • Ensure that Detection Operations staff are properly trained on applicable systems.

  • Coordinate the development, delivery, and documentation of training programs and ensure staff maintains compliance with required training.

  • Assist with audits and create incident reports when needed ensuring information is concise and accurate and is application to security protocols.

  • Work with leadership to implement and maintain standards and procedures to drive efficiencies and security objectives.

  • Interface with Business Unit and Corporate group leadership to provide an understanding of current threats targeting their environments and what security measures are currently mitigating these threats.

  • Responsible for security event monitoring, forensic investigations and incident response as well as identifying new detection and investigative techniques/solutions.

  • Oversee network traffic and security events to identify malicious activity.

  • Coordinate with other members of the Cyber Security Services Team to ensure team cohesiveness.

  • Coordinate with Business Unit and Corporate teams to provide remediation recommendations and mitigate security threat findings.

  • Lead Cyber Security Incident Handling when necessary.

  • Provide audit and compliance request from internal and external entities with data as needed.

  • Provides support for security-related projects as assigned

Who You Are

  • Bachelor’s Degree or equivalent level job experience in Information Security

  • Min 4+ years in Security Operations/Incident Response

  • Advance knowledge of networking, security architecture and security best practices.

  • Advance level data analysis experience with WAF, IDS/IPS, Full Packet Capture and Host/Network/Memory Forensics

  • Advance knowledge with the development of security policies, procedures, guidelines, etc.

  • Enterprise-level experience performing incident triage, analysis, incident response, and remediation for computer network intrusions, web application and server attacks, insider threats, and malware infections.

  • Extensive understanding of the life cycle of cyber threats, attacks, attack vectors and methods of exploitation.

  • In-depth experience reviewing and creating timelines high volumes of logs, network data, attack artifacts, security events and device logs from large corporate LAN/WAN network devices including Firewalls/Switches/Routers, Databases, Anti-Virus, Intrusion Detection Systems (IDS), Web Proxys, and Domain Name Servers (DNS)

  • In-depth experience developing content in enterprise SIEM (Security Information and Event Managers) platforms

  • Knowledge of adversary activities in cyber security with an understanding of intrusion set tactics, techniques, and procedures

  • Excellent verbal and written communication skills.

  • Able to work with sensitive materials and employee information and maintain confidentiality at all times.

Accommodation requests

If you need assistance with any part of the application or recruiting process due to a disability, or other physical or mental health conditions, please reach out to our Recruiting Accommodations Team through the Accommodation Request.

We are proud to be named as a Best Place to Work on Glassdoor in 2024 and be recognized for award-winning culture by organizations like Forbes, TIME, Disability:IN, and others.

Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™. © 2024 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50

Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals with whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs.

Expedia is committed to creating an inclusive work environment with a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  7  0  0

Tags: Audits Compliance DNS Firewalls Forensics IDS Incident response Intrusion detection IPS Malware Monitoring SIEM Threat detection

Perks/benefits: Career development Flex vacation Health care Parental leave Team events

Region: Asia/Pacific
Country: India

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.