We're looking for a talented security incident handler to join Zynga's Security Incident Response team in our San Francisco office. Our team is responsible for sustained network security monitoring and incident response operations at Zynga, and we need help building the Incident Response practice.
Our ideal candidate is a strong generalist and a quick learner with recent experience handling incidents in a large, complex environment that is looking to help build and mature our team. Our incident response engineers share an on-call rotation, and sometimes incident handling work will be required nights and weekends.
We are committed to developing high quality casual and multi-player games! Come join us ... we're having a ball!
Responsibilities
Correlate security incident indicators; review services and information at risk, threat agent activity and capabilities, and root cause
Detect and prioritize multiple concurrent security incidents
Coordinate and lead unstructured security incident response activities
Work with partner teams to contain and eradicate threat agents
Provide partner teams service recovery guidance
Document security incident findings, prepare incident reports, and participate in post-mortem briefings
Present findings to technical and non-technical stakeholders
Instrument Zynga's advanced infrastructure and services to better detect security incident indicators
Validate perimeter and network security controls for effectiveness
Develop and maintain automation capabilities to increase team efficiency
Provide subject matter expertise on network and system security posture
Maintain operational security
Assist in technical investigation of security related events
Produce technical and executive focused metrics
Requirements
5+ years of experience in information security
2+ years of recent experience detecting and responding to security incidents
In-depth knowledge of Microsoft Windows and GNU/Linux userlands and common services
In-depth knowledge of network protocols and infrastructure, and experience instrumenting and analyzing both
In-depth knowledge of common application protocols including HTTP, SMTP, SSH, and DNS
In-depth knowledge of common malware vectors including pdf, java, and executable file structures
A strong generalist IT background with focuses in security engineering and architecture
Competency in C, Shell, PHP, Ruby, Python, and Perl, SQL, and Non-relational databases
Familiarity with common IOCs
A solid understanding of web services architecture and commonly employed technologies
Familiarity with emerging threats, malware, recent well publicized data breach incidents
Excellent written and verbal communication skills
BA/BS in Computer Science or a related field, or equivalent experience
Experience in premier information security consulting organizations, large enterprise, and government sector security incident response teams a plus
Zynga - 14 months ago
- save job
-
block
