Security Engineer III

If you need assistance during the recruiting process due to a disability, please reach out to our Recruiting Accommodations Team through the Accommodation Request form. This form is used only by individuals with disabilities who require assistance or adjustments in applying and interviewing for a job. This form is not for inquiring about a position or the status of an application.

Are you passionate about cloud and the technology needed to drive security? Do you love engineering of critical security systems and services; including Edge protection(Web Application Firewall) , Container security, Data Loss Prevention, Web Content Filtering, Firewall Compliance, Vulnerability and Security Event Management?

ESPSE core engineering team is searching for a top-notch Security Engineer who will deliver on key initiatives, starting from the idea phase all the way through requirements definition, analysis, technical specifications, engineering & deployment. This is a highly visible role that requires an understanding of our large, complex technical environment and has the ability to design/engineer simple, elegant technical security solutions.

Who you are:

• 6+ years of experience in security solutions engineering and operations of a mission critical environment.

• Hands on experience and deep understanding of WAF solution (preferably Akamai), Prisma Cloud Container security, SOAR automation, SIEM integration, Data loss prevention(DLP).

• Creates WAF rules/signatures, policy deployment on site-shield, bot manager to mitigate threats and implements best practices

• Hands on experience with AWS Cloud services like EC2, VPC, S3, IAM, CloudFormation and Lambda; relevant experience with AWS cloud security is highly preferred

• Strong understanding of network security, including TCP/IP, DNS, http headers and routing.

• Hands on experience with conducting Proof of Concept (POC), implementation and rollout of security tools, creating detailed documentation

• Hands On experience of Web Content Filtering(WCF), Intrusion Detection Systems(IDS), Vulnerability Management(VM) & Patching, Password Management, Data Loss Prevention(DLP), Endpoint Detection & Response(EDR), Microsoft Defender Advanced Threat Protection

• Knowledge and understanding of systems and/or network design principles and thorough understanding of security principles and technical architectures

• Ability to correlate and analyze log information, packet captures, security alerts, and artifacts

• Ability to write scripts in one or more languages, such as Python, Perl, or Bash (Preferred), exposure and experience with Jenkins.

• Excellent organizational and communication skills, interacting with security stakeholders, gathering requirements, implementing security solutions etc.

• Innovation driven mindset, reducing technical debt by optimizing security solutions, and automating day to day tasks

• Ability to thrive in a dynamic, collaborative and fast paced environment

• Excellent analytical and problem-solving skills, with the ability to think creatively and critically.

• Long term development of large, complex, and distributed enterprise organizations.

What you’ll do:

• Design, implementation and Deployment of innovative security solutions

• Proactively maintain, monitor and improve our systems and security posture with a focus on service excellence

• Automating workflows to reduce time to resolve or time to recover across various security domains

• Leading solutions development and complex technical deployments across cross-functional teams

• Write and contribute to project plans, author engineering level documentation, and develop detailed test plans.

• Collaborate with business and technical teams to solve complex problems

• Influence the engineering practices within and beyond the Affinity team

About Expedia Group

Expedia Group (NASDAQ: EXPE) powers travel for everyone, everywhere through our global platform. Driven by the core belief that travel is a force for good, we help people experience the world in new ways and build lasting connections. We provide industry-leading technology solutions to fuel partner growth and success, while facilitating memorable experiences for travelers. Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™.

© 2021 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50

Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals to whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs.

Expedia iscommittedto creating an inclusive workenvironmentwith a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.