Go to job search

CSIRT Incident Response Engineer

eBay Inc.

CSIRT Incident Response Engineer

Salary Not Specified

eBay Inc., Richmond upon Thames

  • Full time
  • Permanent
  • Onsite working

Posted 3 weeks ago, 10 Apr | Get your application in now before you miss out!

Closing date: Closing date not specified

job Ref: be92c64214ef4a2d965daf3ec88304c3

Full Job Description

This position entails a variable shift pattern, subject to fluctuations based on the team's operational requirements. We are in search of individuals who possess the adaptability to modify their schedules in alignment with the changing work hours as necessitated by the workload.

At eBay, we're more than a global ecommerce leader - we're changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world. We're committed to pushing boundaries and leaving our mark as we reinvent the future of ecommerce for enthusiasts.

Our customers are our compass, authenticity thrives, bold ideas are welcome, and everyone can bring their unique selves to work - every day. We're in this together, sustaining the future of our customers, our company, and our planet.
Join a team of passionate thinkers, innovators, and dreamers - and help us connect people and build communities to create economic opportunity for all.

What's in it for you
Core Technology (CT) is a global team responsible for the end-to-end eBay technology platform. This platform runs our entire infrastructure and all the services that come together to form ebay.com.

Working within eBay's CSIRT you will have the opportunity to build innovative solutions to identify and mitigate information-security threats. You will work closely to creatively solve complex security problems in a heterogeneous environment. Your skills, vision, tenacity, and passion will help us defend and respond daily to keep eBay's' critical information assets safe from threats.

Core job functions include:

  • Investigations - Responding to events from a variety security tools to conduct compromise assessments, tune alert logic, and improve processes. Propose controls and countermeasures to prevent internal or external attacks or attempts to infiltrate company systems. We utilize a variety of security tooling that supports our defensive posture so familiarity with the fundamentals of defence in depth is required to use them effectively.

  • Research - Always learning and adapting, researching attempted or successful efforts to compromise systems security and then designing countermeasures.

  • Digital Forensics - As it relates to information systems, performs technical investigations in a forensically sound manner. Consults with HR and legal subject matter experts to adhere to local country law

  • Coverage - Must be willing to work shift work, weekends, and holidays as well as participate in our shift lead on-call rotation.

  • Communications - Provides information and updates to management regarding the impact on the business caused by loss, destruction, alteration, or denial of access to information and systems.


    • To be successful in this position, you should be familiar with:
  • Incident Response - Getting people to do the right thing in the middle of an investigation.

  • Offensive Techniques - Penetration testing, IOCs, and exploits at all layers of the stack.

  • Logs - you should be comfortable with a SEIM and database to be able to gather and analyse logs to recreate incidents and hunt for threats.

  • System Forensics - Basic understanding of image acquisition techniques, memory forensics and key artifacts.

  • Networking Fundamentals - TCP/IP Protocols (HTTP, DNS, FTP, DHCP, ARP, etc.)

  • Scripting - Should be familiar in scripting in at least one of the following: python, perl or a similar language.

  • Risk Analysis - Taking a vulnerability in a particular environment and understanding the practical associated risk.

  • Privacy Analysis - Understanding different customer and employee data elements and their associated regulatory frameworks.

  • Regulatory Frameworks such as PCI-DSS, SOX, GDPR, DORA etc.


    • Qualifications:
  • Bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field.

  • Minimum five 3 years of professional experience in incident detection and response, malware analysis, or digital forensics.


    • Ideally holding at least one of the following certifications:
  • SANS GIAC: GCED, GCIA, GCFA, GPEN, GWAPT, GCFE, GSNA, GPPA, GAWN, GWEB, GNFA, GREM, GXPN, GMON or GCIH

  • ISC2: CCFP, CCSP, CISSP

  • EC Council: CEH, ENSA, CNDA, ECSS, ECSP, ECES, CHFI, LPT, ECSA, or ECIH

  • Offensive Security: OSCP, OSCE, OSWP and OSEE


    • In addition, a minimum of three (3) years of specialised experience in one or more of the following areas:
  • Security Assessment or Offensive Security

  • Application Security

  • Security Incident Response

  • Threat Hunting


    • Benefits are an essential part of your total compensation for the work you do every day. Whether you're single, in a growing family, or nearing retirement, eBay offers a variety of comprehensive and competitive benefit programs to meet your needs. Including maternal & paternal leave, paid sabbatical, and plans to help ensure your financial security today and in the years ahead because we know feeling financially secure during your working years and through retirement is important.

    Here at eBay, we love creating opportunities for others by connecting people from widely diverse backgrounds, perspectives, and geographies. So, being diverse and inclusive isn't just something we strive for, it is who we are, and part of what we do each and every single day. We want to ensure that as an employee, you feel eBay is a place where, no matter who you are, you feel safe, included, and that you have the opportunity to bring your unique self to work. To learn about eBay's Diversity & Inclusion click here: https://www.ebayinc.com/company/diversity-inclusion/

    #LI-AZ1

    #LI-Hybrid

    Please see the Talent Privacy Notice for information regarding how eBay handles your personal data collected when you use the eBay Careers website or apply for a job with eBay.

    eBay is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status. If you have a need that requires accommodation, please contact us at talent@ebay.com. We will make every effort to respond to your request for accommodation as soon as possible. View our accessibility statement to learn more about eBay's commitment to ensuring digital accessibility for people with disabilities.

    Jobs posted with location as "Remote - United States (Excludes: HI, NM)" excludes residents of Hawaii and New Mexico.

    This website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies. Visit our Privacy Center for more information.

  • Bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field.

  • Minimum five 3 years of professional experience in incident detection and response, malware analysis, or digital forensics.


    • Ideally holding at least one of the following certifications:
  • SANS GIAC: GCED, GCIA, GCFA, GPEN, GWAPT, GCFE, GSNA, GPPA, GAWN, GWEB, GNFA, GREM, GXPN, GMON or GCIH

  • ISC2: CCFP, CCSP, CISSP

  • EC Council: CEH, ENSA, CNDA, ECSS, ECSP, ECES, CHFI, LPT, ECSA, or ECIH

  • Offensive Security: OSCP, OSCE, OSWP and OSEE


    • In addition, a minimum of three (3) years of specialised experience in one or more of the following areas:
  • Security Assessment or Offensive Security

  • Application Security

  • Security Incident Response

  • Threat Hunting

    At eBay, we're more than a global ecommerce leader - we're changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world. We're committed to pushing boundaries and leaving our mark as we reinvent the future of ecommerce for enthusiasts.


    • Our customers are our compass, authenticity thrives, bold ideas are welcome, and everyone can bring their unique selves to work - every day. We're in this together, sustaining the future of our customers, our company, and our planet.
    Join a team of passionate thinkers, innovators, and dreamers - and help us connect people and build communities to create economic opportunity for all.

    What's in it for you
    Core Technology (CT) is a global team responsible for the end-to-end eBay technology platform. This platform runs our entire infrastructure and all the services that come together to form ebay.com., Benefits are an essential part of your total compensation for the work you do every day. Whether you're single, in a growing family, or nearing retirement, eBay offers a variety of comprehensive and competitive benefit programs to meet your needs. Including maternal & paternal leave, paid sabbatical, and plans to help ensure your financial security today and in the years ahead because we know feeling financially secure during your working years and through retirement is important.