Senior Security Operations Engineer

Job Description

INFOSEC

What We Do

Keep Epic's networks, hardware, and people safe from security risks. Install security measures and operate software to protect systems and information infrastructure, including firewalls and encryption programs. Document issues as they arise and assess & report any impact caused.

What You'll Do

Epic Games is looking for a Senior Security Operations Engineer for our Security Operations team to help
ensure the confidentiality, integrity, and availability of Epic Games' information systems. Working with
various security tools and technologies, you will help with aligning our security tools to best serve the
business, act as an escalation point for the Security Operations Center, and collaborate with other teams
to drive organizational projects across the finish line.

In this role, you will
• Leverage data from SIEM, EDR, and other tooling to understand the threats, incidents, and risks that impact Epic's environment, and based on findings, recommend and make changes to the way Epic handles and processes security events
• Perform reviews of malware activity and engage in response activities as part of our Malware Defense program
• Investigate and respond to escalated security events and incidents using a SIEM
• Mentor and educate junior staff on security best practices
• Participate in quarterly projects aligning to Agile methodology
• Act as escalation point for Security Operations Center
• Recommend and implement detection mechanisms for exploit and or intrusion related attempts
• Aid in the creation of playbooks for our SOC Analysts
• Identify and create new alerts to aid in monitoring
• Evaluate performance of current SIEM rules and modify or implement new rules to provide accurate and actionable alerts for the SOC
• Participate in user story development and proof of concept testing for new tools
• Provide training and knowledge transfers to members of the Epic InfoSec organization
• Support the Incident Response process for escalated security incidents
• Participate in InfoSec's on-call rotation to support the company after business hours

What we're looking for
• Solid knowledge of Information Security principles, technology, and control processes
• 5+ years of hands on Security Operations experience dealing with events and incidents
• General knowledge of Windows/Linux Operating Systems and networking
• Extensive technical troubleshooting skills
• Knowledge of cloud security best practices
• Scripting/Programming knowledge (Python, Perl, VBScript, JavaScript, etc)
• Proficient with Google Apps
• Experience with SOAR platforms and automation tools
• Experience with malware analysis
• Excellent oral and written communication skills, including report writing and technical documentation
• Understanding of OWASP Top 10 attack techniques
• Industry-related certifications

Jobcode: Reference SBJ-g46yn1-18-116-63-174-42 in your application.