About the company
Whatnot is a livestream shopping platform and marketplace backed by Andreessen Horowitz, Y Combinator, and CapitalG. Weāre building the future of ecommerce, bringing together community, shopping and entertainment. We are committed to our values, and as a remote-first team, we operate out of hubs within the US, Canada, UK, and Germany today. Weāre innovating in the fast-paced world of live auctions in categories including sports, fashion, video games, and streetwear. The platform couples rigorous seller vetting with a focus on community to create a welcoming space for buyers and sellers to share their passions with others.
Job Summary
Role
šApply comprehensive knowledge and a thorough understanding of Incident Response concepts, principles, and technical capabilities šCollaborate across Information Security and business partners to ensure effective, precise, and rapid response šAct as the point of escalation from within the Incident Response team to drive all cyber incidents šIdentify new detection opportunities, create playbooks, and support new technology implementations to defend against evolving threats šMaintain awareness and understanding of the current threat landscape. Analyze threat intelligence with the aim to mitigate potential risks šReport the overall health of the SOC via metrics, OKRs, and risk indicators to leadership šProvide Incident Response (IR) support when analysis suspects security incidents to help contain and eradicate threats; šPerform incident triage, incident response, and forensic investigations across endpoints and cloud environments šConduct technical examinations of computer-based evidence including logs, packet captures, SIEM & IDS events, disk forensics, malware analysis, and more šDocument incidents from initial detection through final resolution, and present the findings šInvestigate, document, and report on cyber security issues šCreate and continuously improve standard processes, operating procedures, and incident response playbooks
You
šCurious about who thrives at Whatnot? Weāve found that low ego, a growth mindset, and leaning into action and high impact goes a long way here. šAs our next Threat Detection and Response Engineer, you should have a minimum of 5+ years of relevant experience in security, preferably in a large enterprise environment, plus: šBachelorās degree in Computer Science, Information Security, a related field, or equivalent work experience. š5+ yearsā experience in cyber incident response, or a similar cyber field, including experience with security principles, and defense-in-depth techniques šExperience and understanding of security concepts, SOAR(Tines), EDR, NDR and SIEM (Chronicle) technologies šExperience with multiple Cloud Service Providers (AWS, GCP) šExcellent written communication skills with the ability to document, communicate, and report security incidents, as well as the status of the implementation and effectiveness of cybersecurity controls with product and business leaders šExpected to perform on-call duties
