Manager, Security Engineer

We exist to wow our customers. We know we’re doing the right thing when we hear our customers say, “How did I ever live without Coupang?” Born out of an obsession to make shopping, eating, and living easier than ever, we’re collectively disrupting the multi-billion-dollar e-commerce industry from the ground up. We are one of the fastest-growing e-commerce companies that established an unparalleled reputation for being a dominant and reliable force in South Korean commerce.  

We are proud to have the best of both worlds — a startup culture with the resources of a large global public company. This fuels us to continue our growth and launch new services at the speed we have been since our inception. We are all entrepreneurs surrounded by opportunities to drive new initiatives and innovations. At our core, we are bold and ambitious people that like to get our hands dirty and make a hands-on impact. At Coupang, you will see yourself, your colleagues, your team, and the company grow every day.  

Our mission to build the future of commerce is real. We push the boundaries of what’s possible to solve problems and break traditional tradeoffs. Join Coupang now to create an epic experience in this always-on, high-tech, and hyper-connected world. 

Role Overview

As our Cyber Security Incident Response Lead (CSIRT) for our Seattle office, you will be a part of our special forces within the BlueTeam. You must have a calm and collected mannerism in high-pressure and time sensitive situations, think like both an attacker and defender, and work with relevant teams to take the right and timely actions to analyze, respond and neutralize attacks. 

The BlueTeam is responsible for the detection and response to credible threats. We work hands-on developing detective capabilities, identifying mitigations to vulnerabilities and respond to potential threats to Coupang systems. BlueTeam CSIRT Engineers are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing event data and conducting root-cause analysis. 

 The Senior Engineering Lead position requires an experienced CSIRT personnel that have expert working knowledge in IR, investigation and hunt techniques, root-cause security flaws and vulnerabilities, quickly assessing the potential cyber threats, and educating other members of the broader team. Security Engineers are also expected to develop elegant solutions to complex problems and apply appropriate technologies while following security engineering best practices.

What You Will Do

• Lead and coordinate responses to security incidents, and need hands-on skills
• Manage US DART members
• Analyze and respond to security anomalies, intrusion attempts, and breaches, and root cause analysis, containment, creating the report
• Threat hunting to find undetected security threat from the SOC using data from end points, servers, clouds, network and other sources
• Attack Surface Monitoring (Improperly opened services, Assets having vulnerabilities)
• Oncall to response urgent security events or security issues
• Ticket review, and security analysis escalated from SOC
• Improvement of incident response policies and procedures, and process of SOC.
• Collaborate effectively with internal teams through efficient communication. 

Basic Qualifications

• 15+ years of experience in information security with at least 7+ years as a Cyber Security Incident Analyst
• Experience of Host based security investigation (Windows, Linux, Network/Security appliances)
• Analyzing security event from network security solutions (IPS/IDS, Network Monitoring solutions, Netflow, etc)
• Analyzing security event from endpoint security solutions (EDR, HIPS, Anti-Virus, DLP, etc)
• Analyzing security event from application (Web application, Mobile app, Email security, etc)
• Analyzing security event and knowledge of AWS or Cloud environment
• Experience and skills querying Splunk for analyzing security events from the logs
• Analyze big data or big size logs
• Experience in Automation and Scripting using Bash, Python, PowerShell
• Proactive work attitude
• Bachelor’s degree and 7+ years of practical experience 

 Preferred Qualifications

• Bilingual person (English, Korean)
• Working knowledge of Operating SIEM and CTI (Cyber Threat Intelligence) Solutions and developing use cases
• Knowledge of container environments (e.g., Kubernetes, Docker)
• Current understanding of Network Traffic/Packet analysis and forensic
• Experience in Automation and Scripting using Bash, Python, PowerShell 

Pay & Benefits

Our compensation reflects the cost of labor across several US geographic markets. At Coupang, your base pay is one part of your total compensation.

The base pay for this position ranges from $142,000/year in our lowest geographic market to $309,000/year in our highest geographic market. Pay is based on several factors including market location and may vary depending on job-related knowledge, skills, and experience.

General Description of All Benefits

• Medical/Dental/Vision/Life, AD&D insurance
• Flexible Spending Accounts (FSA) & Health Savings Account (HSA)
• Long-term/Short-term Disability
• Employee Assistance Program (EAP) program
• 401K Plan with Company Match
• 18-21 days of the Paid Time Off (PTO) a year based on the tenure
• 12 Public Holidays
• Paid Parental leave
• Pre-tax commuter benefits
• MTV - [Free] Electric Car Charging Station

General Description of Other Compensation

“Other Compensation” includes, but is not limited to, bonuses, equity, or other forms of compensation that would be offered to the hired applicant in addition to their established salary range or wage scale.

Coupang is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, or gender (including pregnancy, gender identity, gender expression, sexual orientation, transgender status), national origin, age, disability, medical condition, HIV/AIDS or Hepatitis C status, marital status, military or veteran status, use of a trained dog guide or service animal, political activities, or affiliations, citizenship, or any other characteristic or class protected by the laws or regulations in the locations where we operate. If you need assistance and/or reasonable accommodation in the recruiting process due to a disability, please contact us at usrecruiting@coupang.com.  

Job Requisition ID: R0059587