Starbucks - Seattle, WA

posted about 2 months ago

Full-time - Mid Level
Remote - Seattle, WA
Food Services and Drinking Places

About the position

The Cybersecurity Incident Response Engineer, Lead at Starbucks plays a crucial role in safeguarding the company's digital assets by leading the investigation and response to cybersecurity incidents. This position requires a strong technical background in cybersecurity, excellent problem-solving skills, and the ability to communicate effectively with both technical and non-technical audiences. The role emphasizes collaboration and ownership, ensuring that incidents are managed efficiently and effectively while mentoring junior team members.

Responsibilities

  • Leads identification, triage, and investigation of potential security incidents.
  • Orchestrates containment, remediation, and root cause analysis for security incidents.
  • Executes endpoint, network, and cloud forensics.
  • Communicates security incident status updates to executive audiences.
  • Reviews and implements runbooks and standard operating procedures for incident response.
  • Crafts and advances tooling and capabilities to support and automate response activities.
  • Guides and mentors junior members of the threat response team as a key escalation point.
  • Models and acts in accordance with Starbucks guiding principles.

Requirements

  • 8+ years of experience working in an information technology / information security discipline.
  • 4+ years of experience leading cybersecurity incident response.
  • 1+ years of additional experience performing digital forensics.
  • Deep technical understanding of modern cybersecurity threats.
  • Leads threat hunting for threat actor TTPs based on MITRE ATT&CK framework.
  • Quickly assimilates new technology concepts.
  • Exceptional communication skills with both technical and non-technical audiences.
  • Comprehends and applies understanding of compliance and regulatory requirements such as SOX and PCI.
  • Can adeptly juggle multiple priorities to meet deadlines.
  • Promotes a strong collaboration mindset.
  • Excellent problem-solving abilities.
  • Demonstrates passion about cybersecurity and drives self to become an expert.

Nice-to-haves

  • Strong knowledge and experience in programming with at least one modern language such as Java, Python, Ruby, Go, or C#.
  • Capable of leading the automation of tasks and interacting with APIs using common scripting languages.
  • Demonstrates seasoned expertise deploying, configuring, and troubleshooting cybersecurity controls in enterprise environments.
  • Certifications such as CISSP, GCIH, OSCP, or others focused on cybersecurity, incident response, or threat actor techniques.

Benefits

  • Medical, dental, vision, basic and supplemental life insurance.
  • Short-term and long-term disability.
  • Paid parental leave.
  • Family expansion reimbursement.
  • Paid vacation from date of hire.
  • Sick time (accrued at 1 hour for every 25 hours worked).
  • Eight paid holidays and two personal days per year.
  • 401(k) retirement plan with employer match.
  • Discounted company stock program (S.I.P.).
  • Starbucks equity program (Bean Stock).
  • Incentivized emergency savings and financial well-being tools.
  • 100% upfront tuition coverage for a first-time bachelor's degree through Arizona State University's online program.
  • Student loan management resources and access to other educational opportunities.
  • Backup care and DACA reimbursement.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service