Insider Threat, Security Engineer

Are you prepared to join the X team and help build the ultimate real-time information-sharing app, revolutionizing how people connect? At X, we’re on a mission to become the trusted global digital public square, committed to protecting freedom of speech and building the future unlimited interactivity. Our goal is to empower every user to freely create and share ideas, fostering open public discourse without barriers. Join us in shaping this thrilling journey where your contribution will be invaluable to our success!

  

Insider Threat, Security Engineer (All Levels)
Location: Palo Alto or San Jose
Salary Range (US locations only): $127,000 to $297,000 + Equity

_

Who We Are:

X serves our community of users and customers by working tirelessly to preserve free expression and choice, create limitless interactivity, and create a marketplace that enables the economic success of all its participants.

What You’ll Do:

As an Insider Threat Security Analyst on the Insider Threat team you will be charged with the triage and analysis of all incoming detection alerts from a variety of tools in our tech stack. You will work closely with the Insider Threat engineering and investigations team to understand current threats and gaps, escalate appropriate threats to Insider Threat investigators, and develop/tune detections to best protect X. This role will work closely with Insider Threat engineering and analyst teams as well as cross-functionally with other X teams like Product, Data Privacy, Trust and Safety, and other internal stakeholders. This role requires established cybersecurity skills as well as expertise in threat identification and analysis. 

• Improve our capabilities to effectively detect and respond to internal threats and security incidents

• Posses an automation-first mindset

• Leverage threat modeling and analysis to build event and/or behavioral based detections to protect our critical assets and infrastructure

• Perform analysis of logs from a variety of sources (e.g., endpoint logs, application logs, network traffic logs) to identify potential insider threats

• Perform actions that auto-resolve false positives and provide context scaling our ability to investigate

• Identify gaps in our infrastructure, and work with software engineers, analysts, investigators, and stakeholders to gain visibility through logging and detection

• Perform live response, digital forensics, and analysis of a wide variety of assets including endpoints, mobile, servers and networking equipment

• Conduct insider threat investigations in a cross-functional environment and drive incident resolution

Who You Are:

You care about security and ensuring the safety of both the X workforce and the X platform. You are curious, comfortable digging into the details, have experience with the tools of the trade, and are eager to help others protect our data, systems, people, and facilities. Ideally, you have many of the following (but need not have all):

• Bachelor’s degree in Computer Science/Engineering, or relatable experience/certificates (GIAC Certified Forensic Analyst (GCFA), GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Forensic Examiner (GCFE))

• Coding proficiency in Python & SQL

• Experience in commercial Endpoint Detection Response (EDR), Security Orchestration Automation Tools (SOAR),  and a familiarity with security automation workflows

• Networking and system administration experience of server and operating systems (macOS, Linux, Windows)

• Experience in Gsuite Administration, and JIRA. Familiar with multiple commercial & open-source forensic tools to perform analysis and/or memory collection

• Experience in data ingestion in Splunk, Clickhouse, Grafana, and simple storage service, as well as dashboard creation.

• Experience with anomaly detection applicable to the insider threat detection space

• 1- 2+ years incident response experience and/or insider threat experience

• 1- 2+ years of cybersecurity operational experience

If you thrive in a dynamic, high-growth tech environment and relish the opportunity to collaborate with passionate, driven over-achievers, your career with us here at X will be both exhilarating and fulfilling!