CSIRT Incident Response Engineer

At eBay, we're more than a global ecommerce leader — we’re changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world. We’re committed to pushing boundaries and leaving our mark as we reinvent the future of ecommerce for enthusiasts.Our customers are our compass, authenticity thrives, bold ideas are welcome, and everyone can bring their unique selves to work — every day. We're in this together, sustaining the future of our customers, our company, and our planet.Join a team of passionate thinkers, innovators, and dreamers — and help us connect people and build communities to create economic opportunity for all.About the team and role: We are the eBay Computer Security Incident Response Team!We are seeking a CSIRT IR Engineer to join our highly visible Cyber Security Incident Response Team located in our D.C Office.This specific position requires the ability to work flexible shifts, including a potential of nights and weekends.Working within eBay’s Computer Security Incident Response Team (CSIRT) you will have the opportunity to innovate and develop solutions to identify and mitigate information-security threats. You will work to creatively tackle sophisticated security problems in a diverse technical environment.With your contributions, we’re building the best security incident response team in the industry. Your skills, vision, resourcefulness, and passion will help us defend and respond daily to keep eBay’s critical information assets away from threats.What you will accomplish: Investigations – Investigating computer and information security incidents to determine extent of compromise to information systems, must be familiar with notable event triage, Host Forensics, Network Analysis as well as Cloud Technologies and SaaS platforms.Threat Hunting – Respond to various threat signals for evaluation then research and report on the risks associated from intelligence driven signals.Escalations – Responding to escalated notable events from security tooling to notify accountable parties towards securing impacted systems and collaborate with the Detection and Response Group for escalated Incident Management.Research – Researching attempted or successful efforts to compromise systems security and design countermeasures. Stay educated on the latest trends, techniques, tactics and procedures.Communications – Provides information and updates to shift partners, build shift summaries for the next team. Manage communication channels to the SOC, ensuring internal team members are following secure processes.Coverage – Must be willing and able to perform shift work, weekends, and holidays as well as participate in a rotating shift consisting of four (4) 10 hour shifts with four days on, three (3) days off.What you will bring:3+ years of detection engineering, incident response, threat hunting experience or a combination.Ability to query large datasets with a query language.An understanding of Kubernetes cloud environments and operations.Experience working with engineering teams in a hybrid technical environmentVery strong communication and teamwork skills.An ability to analyze risk, take appropriate action with little guidanceBe able to learn new concepts and technologies quickly.Experience handling security incidents and investigating threats.Knowledge of EDR, SIEM and other common security tools.#LI-BB1The base pay range for this position is expected in the range below:$115,200 - $199,700Base pay offered may vary depending on multiple individualized factors, including location, skills, and experience. The total compensation package for this position may also include other elements, including a target bonus and restricted stock units (as applicable) in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as PTO and parental leave). Details of participation in these benefit plans will be provided if an employee receives an offer of employment.If hired, employees will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.Please see the Talent Privacy Notice for information regarding how eBay handles your personal data collected when you use the eBay Careers website or apply for a job with eBay.eBay is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status. If you have a need that requires accommodation, please contact us at talent@ebay.com. We will make every effort to respond to your request for accommodation as soon as possible. View our accessibility statement to learn more about eBay's commitment to ensuring digital accessibility for people with disabilities. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The eBay Jobs website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies. Visit our Privacy Center for more information.