Tech Stack

Description

As a Staff Security Engineer at Mozilla, you will identify and respond to security incidents on a global scale, act as an incident commander, and design automated workflows to protect Mozilla's products and users. You'll conduct threat hunting and collaborate with stakeholders to continuously improve incident response capabilities.

Requirements

• 5+ years managing security incidents at global scale or SOC/PSIRT/CSIRT experience
• Expertise with SIEM systems (ELK, Google BigQuery, Splunk preferred)
• Expertise with threat intelligence integration and detection engineering
• Expertise with SOAR platforms (Tines or Splunk SOAR)
• Practical experience with cloud technologies (GCP, AWS, Heroku, Azure)

Responsibilities

• Identify and respond to security incidents on a global scale
• Act as incident commander through the entire response lifecycle
• Design and maintain security alerts, automated actions, playbooks, and escalation workflows
• Conduct threat hunting and maintain forward-thinking strategies
• Research threat intelligence and manage resulting workflows