Senior Detection and Response Engineer at Afterpay

Information Security, Permanent Full-time, Melbourne or Sydney melbourne sydney engineering full-time
Description
Posted 11 days ago

About Us
Join a movement in which everyone can win. We started a movement in which everyone can win – shoppers, retailers, society and every person on our team. To play fair, trust people and reward them for doing the right thing. We are obsessed with our product. We see and feel the impact of our work as more and more people gain financial freedom and retailers grow across the globe.

Afterpay is offered by more than 55,000 of the world’s best retailers and has more than 10 million active customers globally. Afterpay is offered by top fashion and beauty retailers across the globe - including E-bay, The Iconic, Myer, Foot Locker, Adore Beauty, Mac Cosmetics, Kathmandu and many others. We are currently available in Australia, New Zealand, the United States and the United Kingdom where the brand is called Clearpay.

The Opportunity
Our detection and response function is responsible for:

1. Knowing who our adversaries are and their favored techniques
2. Ensuring that we can detect those adversaries and techniques
3. Designing and drilling an effective response to those techniques

To do this they need not only to respond to alerts but also to design, implement and manage the systems that create those alerts. It also means practicing our responses by training with our business stakeholders.

We’re big believers that the best way to scale a detection and response function is to focus on automation and on aligning the incentives of the people on the team. We aren’t a company that will measure the efficacy of our detection function based on the number of alerts they fire in a day - instead we want to focus on building controls that give us the best chance of detecting adversaries in ways that are unlikely to lead to false alarms or wasted time.

Being a part of our detection and response function will require you to be technical. You’ll understand adversary behaviour and have experience with using automation to solve detection and response problems. You’ll be calm under pressure and a team player.

As a senior member of our team, we will also look to you to help us build a great team culture, enjoy the ride and have a laugh along the way.

Who are you?
Like us, you’ll get a kick out of seeing and feeling the impact of your work. You will be a naturally curious and self-driven individual who enjoys:

- Using the intelligence available to understand adversaries and their business impact
- Prioritizing, design and deploy detection systems for our adversaries
- Assisting with the operation our security monitoring tooling
- Creating and maintain response runbooks
- Responding to alerts generated by our monitoring tooling
- Being an incident handler from time to time
- Participating with the industry to learn about and share knowledge of adversaries

You’ll be familiar with automation and scripting and with common security tooling like EDR, logging/SIEM and email. Experience with cloud is a bonus, as is experience in forensics and threat intel.

We play fair and reward you for doing the right thing. Once we are back in the office you will enjoy working from one of our beautiful offices and feel trusted to work flexibly, remaining connected to smart people in all our locations. We put opportunity before optimism and plan our careers quarterly not annually. We are proud to support working parents of all genders in every country with a market-leading, equitable parental leave program including access to up to 26 weeks paid leave.

When you’re built from the ground up, there’s always room for growth. To challenge each other and shape a legacy built on real purpose, talent, and grit.

How to Apply:
We don’t know what the future holds. That’s the exciting part; we show up and make it happen. If you’re excited by this opportunity, click apply now!

Afterpay is continuing to hire for all open roles with all interviewing and on-boarding done virtually due to COVID-19. All new team members, in addition to current staff, will temporarily work from home until it is safe to return to our offices