Security Engineer II - Detection and Response
London
Spotify
Spotify is a digital music service that gives you access to millions of songs.
The Spotify Security team is looking to advance our threat detection and incident response capabilities. If working with logs and security telemetry to identify new and unknown threats excites you, if threat hunting and building alerts to stay ahead of attackers gets your heart pumping, and if you are up to the challenge of handling security incidents and driving enterprise-wide efforts for containment and response, then stop what you’re doing and apply!
What You'll Do
- You will work with our IT, infrastructure, and feature teams across Spotify to identify new detection opportunities and build out the signal collection to support it.
- You will resolve best solutions for monitoring, processing, and alerting on security-based signals.
- You will form repeatable processes for prioritizing and responding to alerts and developing playbooks.
- You will mature our capabilities to proactively identify security threats and develop detections.
- You will participate in response to incidents to drive containment and remediation to keep Spotify secure.
- You will work with security technologies such as SIEM, EDR, SOAR and other platforms that we use in our daily operations.
- You like rapidly prioritizing work based on business needs and assessed risks.
- You like working in a flexible environment where you can wear many hats.
Who You Are
- You have experience and interest in security detection engineering and incident response.
- You have a demonstrable understanding of developer concepts and technologies such as Github, CI/CD, and infrastructure as code
- You like crafting repeatable processes, but when you have to do something more than a few times, you automate it using a scripting language of your choice, or an automation platform
- You have an understanding of the current threat landscape and building detection and response capabilities in SaaS-oriented corporate IT environments.
- You have experience working in cloud environments such as GCP, AWS, or Azure.
Where You'll Be
- For this role you will be based in Stockholm, Sweden or London, UK.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
9
0
0
Category:
Security Engineering Jobs
Tags: Automation AWS Azure CI/CD Cloud EDR GCP GitHub Incident response Monitoring SaaS Scripting SIEM SOAR Threat detection
Perks/benefits: Flex hours
Region:
Europe
Country:
United Kingdom
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Systems Security Officer jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsInformation Security Manager jobsSenior Network Security Engineer jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsSenior Penetration Tester jobsSystems Engineer jobsChief Information Security Officer jobsSystems Administrator jobsInformation System Security Officer (ISSO) jobsPrincipal Security Engineer jobsIT Security Analyst jobsSenior Product Security Engineer jobsStaff Security Engineer jobsThreat Intelligence Analyst jobsCloud Security Architect jobsInformation Systems Security Engineer jobs
CI/CD jobsKubernetes jobsPowerShell jobsDevSecOps jobsEDR jobsSaaS jobsIDS jobsSplunk jobsIPS jobsRMF jobsSQL jobsTop Secret jobsIntrusion detection jobsSDLC jobsBash jobsThreat detection jobsActive Directory jobsCompTIA jobsITIL jobsDoDD 8570 jobsBanking jobsCRISC jobsOWASP jobsGIAC jobsDocker jobs
Finance jobsTCP/IP jobsClearance Required jobsUNIX jobsVPN jobsHIPAA jobsOSCP jobsIT infrastructure jobsCISO jobsTerraform jobsIndustrial jobsSOC 2 jobsSANS jobsJavaScript jobsSOAR jobsCCSP jobsDNS jobsPolygraph jobsMITRE ATT&CK jobsNIST 800-53 jobsData Analytics jobsGCIH jobsSOX jobsJira jobsAnsible jobs