Cybersecurity Senior Engineer (Customer Cyber Threat Response)

Company

Cox Automotive - USA

Job Family Group

Information Technology

Job Profile

Cybersecurity Sr Engineer

Management Level

Individual Contributor

Flexible Work Option

Hybrid - Ability to work remotely part of the week

Travel %

Yes, 5% of the time

Work Shift

Day

Compensation

Compensation includes a base salary of $118,800.00 - $198,000.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate’s knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

Job Description

We are seeking a skilled and detail-oriented Cybersecurity Senior Security engineer, who will be focused on customer-related security operations and incident response. This role is critical in detecting, analyzing, and responding to security incidents impacting our customers and products. The ideal candidate will leverage their expertise in Security Operations (SecOps), Incident Response (IR), and threat detection to ensure mitigation and resolution of security threats.

Security Operations

• Conducts threat analysis and alert triage using various security tools (e.g., SIEM, EDR, Intelligence platforms).
• Investigates and responds to escalations involving phishing, account takeovers, data breaches, and other security issues.
• Performs threat hunting to proactively identify malicious and fraudulent activity.
• Analyzes threat intelligence to identify and mitigate emerging threats to businesses and customers.
• Creates investigation workflows and steps, aligned to threat resolution.
• Continuously improves and maintains investigation workflows, achieving process optimization and improved threat detection.
• Collaborates with various teams and MSS, continuously improving cybersecurity capabilities (prevention, detection, response).
• Supports customer-facing teams and relevant business stakeholders for various security issues.
• Proposes and helps review security plans and policies to improve organizational security posture.
• Provides off-hour support as needed for security administration, detection, and response activities.

Incident Response

• Investigates and responds to customer impacting security incidents (e.g., Denial of Service, data breaches).
• Investigates tactics, techniques, and procedures (TTPs) used by threat actors conducting malicious activity.
• Correlates incident data to identify threat trends and specific vulnerabilities.
• Conducts root cause analysis and develops remediation strategies to prevent incident recurrence.
• Documents response activities and mitigation measures for internal and external stakeholders.
• Plans, implements, and maintains incident handling procedures, continuously improving response effectiveness.

Service Desk and Incident Management

• Supports investigations and resolution of customer-based security issues.

Project Responsibilities

• Partners with teams, designs, implements, and refines customer-focused detection rules and processes.
• Defines KPIs, builds dashboards, and reports on detection and response performance.

Professional Technology Skills (the professional technology skills you need to be able to do the job)

Ability to:

• Work with technical teams along with external MSSPs, for security monitoring of DDoS Protection, Email systems, Application logs, Intelligence platforms, and Endpoint security technologies.
• Perform data analytics, security event correlation, and issue triage.
• Apply security Threat Intelligence to respond appropriately to security events.
• Work on projects to improve security monitoring and response capabilities.
• Demonstrate a strong understanding of Zero Trust and security best practices.
• Demonstrate a strong security engineering and architecture background.
• Demonstrate effective communication of security issues to management and peers.
• Maintain security monitoring guidelines and standards.
• Perform incident response and forensic activities for internal and external threats.
• Work with internal teams (IT, business), MSSPs, and external forensic services while responding to incidents.
• Ensure all identified incidents are promptly and thoroughly investigated and remediated.
• Ensure security incidents are documented accurately and thoroughly.

Knowledge, Experience & Qualifications

Essential

• Bachelor’s degree in Computer Science and 4+ years of industry related professional experience and education.
• Multi-cloud security experience AWS, Azure, GCP
• Expert level knowledge on WAF, Web Security, DDoS protection, data analytics, and Bot Mgmt.
• Working experience with Information Security, Network Security, Security Monitoring and Incident Response.
• Working experience with industry standard security technologies and services including Threat Intelligence, IPS, Endpoint Security, SIEM/SOAR.
• Strong ability in investigative skills and problem solving.

Desirable

• GSEC, GCIA, GFE, GCFA, CISA, CISSP, CISM, or CIA certification(s).
• Dev Ops / Engineering / Network / System Administration experience.
• Experience with various querying and scripting languages.

Drug Testing

To be employed in this role, you’ll need to clear a pre-employment drug test. Cox Automotive does not currently administer a pre-employment drug test for marijuana for this position. However, we are a drug-free workplace, so the possession, use or being under the influence of drugs illegal under federal or state law during work hours, on company property and/or in company vehicles is prohibited.

Benefits

The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.

About Us

Through groundbreaking technology and a commitment to stellar experiences for drivers and dealers alike, Cox Automotive employees are transforming the way the world buys, owns, sells – or simply uses – cars. Cox Automotive employees get to work on iconic consumer brands like Autotrader and Kelley Blue Book and industry-leading dealer-facing companies like vAuto and Manheim, all while enjoying the people-centered atmosphere that is central to our life at Cox. Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page. Cox is an Equal Employment Opportunity employer – All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Cox provides reasonable accommodations when requested by a qualified applicant or employee with disability, unless such accommodations would cause an undue hardship.