What you'll do:
Work with and guide the Security Operations Center (SOC)
Identify needed log sources to monitor and integrate them with the SIEM
Identify and analyze highly suspicious alerts and notify users of malware infections and investigations
Perform preliminary static and dynamic analysis of threat actors’ malicious tools (stagers, exploit kits)
Identify recurring events and Implement automated processes for investigation and mitigation
Perform full Incident Response (IR) and/or memory forensics
Perform Post Mortem for Incident Response events according to team policy
Perform proactive Threat Hunting to identify threat actors in Wix systems
Testing and implementing innovative new IR solutions across Wix Systems
Develop automations and playbooks for the SOC team
Qualifications:
An IR & Threat Hunting Engineer with 3+ years of experience in cyber security and Incident response field.
You understand and are familiar with business security processes
You have excellent knowledge of operating systems internals and endpoint security experience (Windows / Mac /Linux Internals)
You know behind the scenes how APT campaigns, attack Tactics, Techniques and Procedures (TTPs), memory injection techniques, static and dynamic malware analysis, and malware persistence mechanism works
You have Proven experience with implementing automated processes with SOAR systems
You have a good knowledge of the MITRE ATTACK framework
You are familiar with dynamic and static malware analysis tools, Sysinternal tools, etc.
You have good verbal and written communication skills in English
Proven knowledge of scripting languages like Python
You can multitask, work on multiple events and communicate with other team members
You are highly motivated, self-driven, and can work independently and within a team
Bonus points if you have:
Prior knowledge of a cloud-based environment
Ability to envision security solutions and bring them to fruition
Have IT\System background
Have experience with visualization tools(Kibana, Grafana, etc)
We are:
We are Wix’s Security Guild. We’re a group of highly motivated Security Engineers that form part of the Wix R&D group. We allow Wix Developers and users to achieve their goals without risk, often meaning we find or create unique solutions. Our work is exceptionally challenging due to Wix’s scale, agility, and advanced technical diversity. When it comes to technology, we have the ultimate playground, and although we work together closely, there’s always space for independence, innovation, and creativity.
***
We’re proud to be an equal opportunity employer. Wix was built around the idea that everyone has the right to be successful, online. This same vision defines us as an employer: creating a work environment where everyone is welcome, and anyone has the right to succeed.
About Wix:
Wix makes it possible for anyone to succeed online. Since 2006, we’ve grown to 5,000 employees in 17 countries, launched over 30 products, and serve over 230 million users and their visitors worldwide. At Wix, we push you to innovate, evolve in non-traditional ways, and collaborate. We operate in small teams that work closely together at a high level.
Although we’re already industry leaders in web creation and business, our work is nowhere near done. Our goal is to become the main engine of the Internet so we can create a more open web for all.
