Expedia Group brands power global travel for everyone, everywhere. We design cutting-edge tech to make travel smoother and more memorable, and we create groundbreaking solutions for our partners. Our diverse, vibrant, and welcoming community is essential in driving our success.

Why Join Us?

To shape the future of travel, people must come first. Guided by our Values and Leadership Agreements, we foster an open culture where everyone belongs, differences are celebrated and know that when one of us wins, we all win.

We provide a full benefits package, including exciting travel perks, generous time-off, parental leave, a global hybrid work setup (with some pretty cool offices), and career development resources, all to fuel our employees' passion for travel and ensure a rewarding career journey. We’re building a more open world. Join us.

Security Engineer II:

Are you someone who has solid background in the information security profession with a passion for protecting an organization’s computers, networks and data against computer viruses, security breaches and malicious attack? If so, we want to talk with you.

As a Security Engineer you’ll be a key Player of a growing team chartered with improving and maturing the security poster of Expedia Group while protecting corporate & traveler data. Your work will be instrumental in, not only, improving the security of company but testing cycle times but also in ensuring that all solutions complement one another and function seamlessly.

The ideal candidate would be open to new challenges, be extremely good at multi-tasking, be innovative, creative, disciplined and an outstanding teammate. The candidate would be comfortable driving continuous process improvement and collaborating effectively across teams to take on problems and implement new solutions.

What You’ll Do:

• You’ll be responsible to for smooth overall daily operations of the CSIRT 24/7 security support.

• Flexibility as the position will require shifts to cover 24x7 follow the sun in lined with US team.

• Responsible for the immediate escalation of Security issues ensuring adherence to SLAs and drivingresolution/mitigation.

• Monitoring of security processes and technologies that reduce or remove security related risk in support of the enterprise and in compliance with regulatory requirements.

• You’ll support all aspects of a security event monitoring and incident response process.

• You will seek continuous improvement of security events and proactively oversees research to identify emerging threats.

• Work with leadership to implement and maintain standards and procedures to drive efficiencies and security objectives.

• Responsible for security event monitoring generated by security tools.

• Oversee network traffic and security events to identify malicious activity.

• Provide support for security-related projects as assigned

Who You Are:

• Bachelor’s Degree or equivalent level job experience in Information Security

• 3+ years in Security Operations/Incident Response

• Advance knowledge of networking, security architecture and security best practices.

EDR investigation and Phishing email investigations
Basic understanding of cloud platforms: AWS, Azure, GCP.

• Advance level data analysis experience with WAF, IDS/IPS, Full Packet Capture and Host/Network/Memory Forensics

• Advance knowledge with the development of security policies, procedures, guidelines, etc.

• Enterprise-level experience performing incident triage, analysis, incident response, and remediation for computer network intrusions, web application and server attacks, insider threats, and malware infections.

• Extensive understanding of the life cycle of cyber threats, attacks, attack vectors and methods of exploitation.

• In-depth experience reviewing and creating timelines high volumes of logs, network data, attack artifacts, security events and device logs from large corporate LAN/WAN network devices including Firewalls/Switches/Routers, Databases, Anti-Virus, Intrusion Detection Systems (IDS), Web Proxys, and Domain Name Servers (DNS)

• In-depth experience developing content in enterprise SIEM (Security Information and Event Managers) platforms

• Knowledge of adversary activities in cyber security with an understanding of intrusion set tactics, techniques, and procedures

• Excellent verbal and written communication skills.

• Able to work with sensitive materials and employee information and maintain confidentiality at all times.

Accommodation requests

If you need assistance with any part of the application or recruiting process due to a disability, or other physical or mental health conditions, please reach out to our Recruiting Accommodations Team through the Accommodation Request.

We are proud to be named as a Best Place to Work on Glassdoor in 2024 and be recognized for award-winning culture by organizations like Forbes, TIME, Disability:IN, and others.

Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™. © 2024 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50

Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals with whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs.

Expedia is committed to creating an inclusive work environment with a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.

Company

For job seekers

For companies

Cyber Security jobs

Security Engineer II

Security Engineer II

Security Engineer II

Location

Workplace

Type

Posted

Website

Similar Jobs

Cloud Systems Engineer II, ADC System Security Engineering

Software Engineer II _(Full Stack) - M365 Security Engineering

Security Engineer II, AWS Cloud Security Response

Security Engineer II, AWS Security - Amazon Dedicated Cloud

Security Engineer II, AWS Security

Security Engineer II, RSCI Vector Security

Security Engineer II, Infrastructure Security Compliance

Security Engineer II, Infrastructure Security Compliance

Information Security Engineering II

Security Engineer II