Senior Information Security Engineer - Incident Response

LinkedIn is looking for an experienced Senior Incident Response Engineer to be an integral part of our Information Security organization. The Incident Response team is responsible for protecting our infrastructure, applications, and, most importantly, our members. This role will be responsible for playing a key role in our security monitoring and incident response team. The role is a Senior position, coming in with years of real world experience in responding and leading incident investigations, developing playbooks, and continually striving to improve processes and response times. Additionally as a Senior, a successful candidate will help lead the continued improvements, mentor more junior team members, while acting as a lead during large scale incidents.

Responsibilities: · Independently triage security alerts and incident reports. · Investigate incidents using available resources, forensic and threat hunting skills. · Drive small to medium scale incidents with multiple team members and partner teams to closure. · Conduct host, network, and log analysis in support of incident response investigations · Enhance our in-house incident response platforms and build new capabilities. · Participate in oncall activities. · Work with partner teams including: PR, HR, Legal, Compliance, Investigations, Microsoft CDOC, Engineering, EPE. · Work in a team environment to drive large scale incidents to closure and full remediation. · Contribute to improving processes, procedures and technologies used by the team. · Provide feedback to detection engineering team about accuracy and quality of detections · Provide proactive and accurate data to all stakeholders for internal communication · Help uplift entire team by providing demonstration of new processes or training on systems · Support mentoring and technical development of incident response engineers

Basic Qualifications: · BA/BS degree in Information Security, CyberSecurity, Computer Science, or other related technical disciplines, or equivalent practical experience · 4+ years experience in Information Security, with 3+ years experience in Incident Response as part of that experience. · Incident response experience should include: · Experience with triaging security alerts. · Experience with incident lifecycle and incident handling. · Experience with log analysis · Experience with SIEM solutions · Experience with Windows and Unix operating systems logs. · Experience with Web Server logs. · Experience with EDR solutions · Experience with system level analysis - windows, linux, and mac. · Experience with 1 or more of these areas: · System Forensics · Network Forensics · Cloud Forensics · SOAR/Security Orchestration · Threat Intelligence

Preferred Qualifications: · Master's degree in Information Security, CyberSecurity, Computer Science, or other related technical disciplines. · Developer experience, the ability to understand source code and develop scripts. · Practical threat hunting experience with open source tool chain · Scripting knowledge to automate repetitive, time consuming and error prone activities using a general purpose scripting language (ex: Python) · Prior experience with malware analysis

LinkedIn is committed to fair and equitable compensation practices. The pay range for this role is $121,000-198,000. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location. This may be different in other locations due to differences in the cost of labor.