Detection Engineer - Security (SIEM, Go or Python) B2B

Location: Krakow, Poland.  Hybrid on site 3 days per week. 

This is a B2B contract position.

The Security Operations team at Opendoor focuses on identifying and protecting assets, detecting anomalies and attacks, responding to compromise, and recovering from asset compromise in order to return the business to a steady state. The scope of the Security Operations team includes:

• Application Security
• Detection Operations
• Incident Response
• Infrastructure Security
• Penetration Testing
• Threat Intelligence
• Position Overview

As a  Detection Engineer, 

you will be responsible for implementing and maintaining all aspects of Security across applications and cloud infrastructure. Your primary focus will be:

• Monitor and analyze the organization's cloud and IT infrastructure, networks, and systems for potential security threats
• Respond to and mitigate security incidents
• Collaborate with cross-functional teams to develop and maintain incident response procedures
• Contribute to the continuous improvement of the organization's security posture
• Work with telemetry regarding vulnerability management and assist in triaging vulnerabilities.

Responsibilities

• Detect, respond to and remediate security events
• Design and Build automation for the detection, investigation and remediation of security events across Opendoor 
• Manage and coordinate Incident Response functions
• Act as a first responder to both internal and external security notifications
• Work with stakeholders throughout security and engineering to develop and improve threat detection logic, enhance response capabilities, and deploy new tools.
• Translate threat bulletins into actionable detections
• Create and continuously tune detection use cases, rules and analytics using best-practice frameworks such as MITRE ATT&CK.
• Create and maintain relevant incident response playbooks and documentation on cyber defense techniques and reports
• Maintain vulnerability telemetry and triage vulnerabilities.

Requirements

• 2+ years experience as an incident response and threat hunting
• Knowledgeable in
  • detection engineering,
  • endpoint detection and response tooling,
  • intrusion detection,
  • common IOCs/TTPs, MITRE ATT&CK
  • initial access techniques.
• Experience in security event management and orchestration (SIEM / SOAR).
• Experience in tooling that is common to the DFIR space (e.g., Splunk, Crowdstrike, Nessus, Palo Alto Prisma, HackerOne, Okta, etc.)
• Incident Response experience in the Cloud (AWS, Azure) and on MacOS and Windows devices
• Vulnerability management experience
• Experience in automation with Python, Bash or Go
• Bachelor's degree in Computer Science, Information Security, or related field.

Bonus points if

• An understanding of the value of usability and buy-in when it comes to security policy and practices
• DFIR expert: You have deep experience in all aspects of incident response.
• A love of instrumentation and automation
• Love for security at work and outside of work. As shown by: presenting at a known security conference, contributing to or creating open source security tools, contributing to the security community in general, etc

About Opendoor

Founded in 2014, Opendoor’s mission is to power life’s progress one move at a time. We believe the traditional real estate process is broken and our goal is simple: build a digital, end-to-end customer experience that makes buying and selling a home simple and certain. 

• To learn how we are reinventing the Real Estate industry check out our website. 
• Hear about our culture directly from team members by visiting The Muse. 
• Discover what we are building for our customers by reading our blog.

Opendoor Values Openness

We believe that being open about who we are and what we do allows us to be better. Individuals seeking employment at Opendoor are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, sexual orientation, gender identity or other protected status under all applicable laws, regulations, and ordinances. We collect, use, and disclose applicant personal information as described in our personnel privacy policies. To learn more, you can find the policy details for California residents here and for Canada residents here.

We’re committed to Diversity, Equity, Inclusion, and Belonging

Opendoor is dedicated to creating an inclusive and collaborative culture. We value the diverse strengths, perspectives, and backgrounds of all our employees, and believe in empowering our teams to do their best work through teamwork and building a sense of belonging and trust. Our four employee-led Opendoor Employee Resource Groups amplify diverse voices and promote collaboration and inclusion. Our focus is on attracting and retaining exceptional talent, and we believe in empowering our employees to continuously innovate and strive for 1% improvement every day. You can find more information on our Career Page.

We are committed to assisting members of the military community in utilizing their skills at Opendoor. U.S. candidates are able to review your military job classification at MyNextMove.org and apply for positions that align with your expertise.

At Opendoor, we are committed to providing reasonable accommodations throughout our recruitment processes for candidates with disabilities, pregnancy, religious beliefs, or other reasons protected by applicable laws. If you require assistance or a reasonable accommodation, please contact us at TAops-accomodations@opendoor.com.