Are you interested in securing the home for all developers? GitHub is changing the way the world builds software, and we want you to help change the way we secure GitHub. We are looking for Security Engineers to evolve and advance the security posture of GitHub and its ecosystem.

Threat Detection and Response is a core function of Security Operations at GitHub. To effectively protect our people, our customers, and our business, we are looking for people who can effectively identify and respond to threats across our platform and supporting systems.

The TDR team is made up of analysts and engineers with varied skill sets, able to perform security analysis, threat hunting, incident response, and tooling development at high levels.

As a Senior Security Analyst, you will work alongside other members of Security, IT, and Engineering organizations to help drive technical direction for all things security. You will operate within a team who are driven to develop GitHub’s threat detection capabilities, and you will play a leading part in identifying and prioritizing detection efforts within our environment. Through industry research as well as collaborative Purple Team exercises, you will look to foster an innovative and collaborative environment for bettering GitHub’s security posture. A successful applicant will have a desire to work in tandem with other security professionals to secure GitHubbers and GitHub systems in diverse environments at scale.

Responsibilities:

• Partnering with other security teams to identify, investigate, and mitigate threats

• Communicating persuasively with peers to inspire cooperation

• Working solo or collaboratively while delivering simultaneous projects on a deadline

• Developing, maturing and documenting security policy and processes

• Participating in an on-call rotation

• Collaborating on and leading purple team exercises

• Making well-reasoned decisions that inspire and energize others

• Continuously evaluating GitHub’s detection suite and identifying visibility gaps

• This role will require working non-standard working hours, including weekends and holidays approximately 1-2 times per month.

Qualifications Required/Minimum Qualifications:

• 7+ years experience in security analysis, security research, cyber security, security engineering, or relevant area
  • ​​OR Associate’s Degree AND 6+ years of experience in security analysis, security research, cybeer secuirty, security engineering or relevant area
  • OR Bachelor's Degree AND 5+ years of experience in security analysis, security research, cyber security, securityy engineering,, or relevant area
  • OR Master's Degree AND 3+ years experience in security analysis, security research, cyber secuirty, security engineering, or relevant area
  • OR Doctorate AND 1+ year(s) experience in ecurity analysis, security research, cyber secuirty, security engineering, or relevant area
  • OR equivalent experience
• 5+ years of experience in threat hunting and/or detection engineering
• 3+ years of experience with SIEM solutions
• 5+ years of experience with software development in python

Preferred Qualifications:

• Experience and/or expertise with Microsoft Azure, Amazon Web Services or a similar cloud provider
• Passionate about mentoring and helping their peers grow
• Familiarity with data correlation and modern threat detection techniques
• Knowledge and understanding of security controls across all security domains
• The ability to take a pragmatic, risk-based approach to decision making while applying practical security principles and practices