Security Engineer Iii

Job Title: Security Engineer III - Detection Operations

Company: Expedia Group
Location: Gurgaon, Hybrid

Why Join Us?

At Expedia Group, we are transforming the future of travel by designing cutting-edge technology that simplifies and enhances the travel experience. Our mission is to make travel smoother and more memorable for everyone, everywhere. As part of our diverse, vibrant, and welcoming community, you'll be instrumental in driving this success.

We prioritize a culture where everyone belongs, differences are celebrated, and when one of us wins, we all win. We offer a full benefits package, including exciting travel perks, generous time off, parental leave, a hybrid work environment, and abundant career development resources to fuel your passion for travel and ensure a fulfilling career.

Role Overview:

As a Security Engineer III - Detection Operations at Expedia Group, you will play a pivotal role in protecting the organization’s computers, networks, and data from security breaches, malicious attacks, and other threats. You’ll be part of a growing security team, driving continuous improvement in security operations while ensuring the safety of both corporate and traveler data. This role offers the opportunity to enhance Expedia's security posture and ensure that security systems and processes work seamlessly together to protect the company’s assets.

Key Responsibilities:

• Operational Leadership: Oversee the daily operations of the Enterprise Risk & Security team, ensuring 24/7 security support for the organization.

• Security & Threat Detection Management: Lead security personnel in the monitoring and management of security technologies, ensuring compliance with regulatory requirements and mitigating security risks.

• Security Event & Incident Response: Manage security event monitoring, forensic investigations, and incident response. Ensure timely detection, triage, and resolution of security incidents.

• Continuous Improvement: Proactively research emerging threats and seek continuous improvement of security processes and technologies to enhance detection and response capabilities.

• Expertise in Detection Technologies: Serve as a domain expert in detection operations technologies, providing recommendations on emerging security solutions and ensuring optimal performance of security systems.

• Training & Documentation: Develop and deliver training programs for security teams to ensure they are well-versed in security protocols and best practices. Maintain up-to-date documentation on security procedures and standards.

• Collaboration: Interface with cross-functional teams and leadership to communicate current threats and security measures. Provide remediation recommendations to mitigate security risks.

• Security Audits & Compliance: Assist in internal and external audits, provide necessary data, and ensure compliance with relevant security standards and regulations.

• Incident Handling: Lead cyber security incident handling when necessary, ensuring that incidents are appropriately logged, reported, and investigated.

• Network Traffic & Security Event Monitoring: Oversee network traffic analysis and security event monitoring to identify and respond to malicious activity in real-time.

Who You Are:

• Experience:

  • Minimum of 4+ years in Security Operations or Incident Response.
  • In-depth experience with network security, security architecture, and best practices.
  • Advanced data analysis skills with experience in WAF, IDS/IPS, Full Packet Capture, and Host/Network/Memory Forensics.

• Technical Expertise:

  • Extensive knowledge of cyber threats, attack vectors, and methods of exploitation.
  • Proficiency in reviewing large volumes of logs and security events, including network data, firewalls, routers, databases, intrusion detection systems (IDS), and more.
  • Experience in developing content for enterprise SIEM (Security Information and Event Management) platforms.
  • Strong understanding of adversary tactics, techniques, and procedures in cybersecurity.

• Incident Management:

  • Proven experience performing incident triage, analysis, remediation, and incident response for network intrusions, malware, insider threats, and more.

• Soft Skills:

  • Excellent communication skills, both verbal and written.
  • Ability to work with sensitive materials and maintain confidentiality.

• Educational Background:

  • Bachelor’s Degree or equivalent experience in Information Security or related field.

What We Offer:

• Global Hybrid Work Setup: Flexibility to work from home or in our innovative offices.
• Exciting Travel Perks: Enjoy travel discounts and benefits as part of the Expedia family.
• Generous Time-Off: Flexible vacation time to help maintain a healthy work-life balance.
• Career Development: Opportunities for growth through continuous training, mentorship, and promotions.
• Inclusive Culture: A welcoming environment that celebrates diversity and promotes equality.
<