Senior IT Cybersecurity Engineer, Incident Response

at Motional
Published March 20, 2023
Location Boston, MA
Category Default  
Job Type Full-time  

Description

Mission Summary:

As part of our Cybersecurity Incident Response Team (CIRT), you will help us deliver the future by assuring the safety and cybersecurity of our self-driving vehicles, passengers, and infrastructure. You will work in the CIRT to build, develop, and operate a model of Incident Response that will allow us to quickly identify, respond, and protect against threats.

You will assist and/or lead investigations in active security incident scenarios, supporting the organization through the Incident Response lifecycle. You will work across functions to identify new and emerging threats and work to develop detection alarms and workflows to assist in future identification and response. Additionally, you will specialize in our Enterprise environment ensuring organizational policies and controls are in place and being maintained.

The Motional global headquarters are located at 100 Northern Avenue in Boston, MA. Nestled in the bustling Seaport district with sweeping views of Boston Harbor and downtown Boston, the offices are located close to major transit lines and a quick walk to various restaurants and popular attractions.

What You'll Be Doing:

* Provide expertise in the triage, identification, containment, and resolution of potential security incidents
* Execute the incident response plan, ensuring cross-functional teams operate functionally and efficiently through incident response scenarios
* Draft, maintain, and communicate incident reports for an executive audience
* Develop dashboards to allow quicker and more efficient insight into security events
* Improve Cybersecurity monitoring by identifying and onboarding new log sources, creating new detection rules, and automating response workflows
* Identify residual risk through security monitoring and instigate security-focused projects to remediate root cause issues
* Proactively hunting threats in our environment, identifying new risk areas, and developing methods for us to proactively address these threats
* Manage multiple cybersecurity technologies to ensure ongoing maintenance and effective capabilities
* Work with broader Cybersecurity and IT team members to ensure compliance with applicable regulations, standards, and policies related to cybersecurity

What We're Looking For:

* BS or MS in Computer Science, Cybersecurity, Information Systems, Information Technology or Equivalent Knowledge and Work Experience
* 5+ years of full-time experience in Information Technology implementation, maintenance, and support.
* 3+ years of full-time, hands-on experience in a Cybersecurity Operations position.
* Possess one cybersecurity certification (GIAC Certified Incident Handler, EC-Council Certified Incident Handler, CISSP, etc.)
* Theoretical and practical knowledge with Mac, Linux, and Windows operating systems
* Knowledge and experience in multiple security frameworks (i.e. NIST, CIS, ATT&CK, etc.)
* Experience with security investigation tools (i.e. EDR, SIEM, UBA, etc.)

Bonus Points:

* Experience working with a Managed Security Service Provider
* Experienced user of Splunk
* Experience with ISO/IEC 27001 standard

Why You Should Join Us:

* Opportunity to advance the state of the art on cybersecurity for cutting-edge autonomous vehicle technology
* Work with experienced teammates who are passionate about developing your capabilities as a cybersecurity engineer
* Catered lunches and snack bars at offices