Lead Engineer - Threat Detection
- Employer
- Target
- Location
- Brooklyn Park, Minnesota
- Start date
- Nov 10, 2021
- Closing date
- Dec 2, 2021
View more
- Category
- Retail / Wholesale
- Employment Status
- Full Time
You need to sign in or create an account to save a job.
Description:
JOIN TARGET CYBERSECURITY AS A LEAD ENGINEER - THREAT DETECTION
About us:
As a Fortune 50 company with more than 350,000 team members worldwide, Target is an iconic brand and one of America's leading retailers.
Working at Target means the opportunity to help all families discover the joy of everyday life. Caring for our communities is woven into who we are, and we invest in the places we collectively live, work and play. We prioritize relationships, fuel and develop talent by creating growth opportunities, and succeed as one Target team. At our core, our purpose is ingrained in who we are, what we value, and how we work. It's how we care, grow, and win together.
Target as a tech company? Absolutely. We're the behind-the-scenes powerhouse that fuels Target's passion and commitment to cutting-edge innovation. We anchor every facet of one of the world's best-loved retailers with a strong technology framework that relies on the latest tools and technologies-and the brightest people-to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out.
As a detection engineer on the Threat Intel Detection Engineering (TIDE) team, you will be an integral piece in securing Target against current and future threats. TIDE works closely with our Cyber Threat Intelligence team to track and build detection for our most sophisticated adversaries. Each engineer is responsible for managing and building subject matter expertise (SME) in our various detection platforms. TIDE engineers will also be called upon to develop bespoke solutions for our detection and workflow needs. While our primary customer is the Computer Security Incident Response Team (CSIRT), we also build tooling and detection for threat hunting, investigations, and intelligence operations. We have access to the latest in technology in EDR (endpoint detection and response) and NSM (network security monitoring) as well as open-source cloud platforms.
This role requires subject matter expertise in SIEM technologies, in particular Logstash and Elasticsearch. You will be responsible for maintaining and building net-new visibility and capability to detect malicious behavior in Target's environment using our on premise, customized SIEM, as well as identifying SIEM improvements that would drive new detection capabilities. Duties include, but not limited to, driving visibility and detection strategy from inception to implementation as well as developing core detection competencies in our enterprise environment.
About you:
Americans with Disabilities Act (ADA)
Target will provide reasonable accommodations (such as a qualified sign language interpreter or other personal assistance) with the application process upon your request as required to comply with applicable laws. If you have a disability and require assistance in this application process, please visit your nearest Target store or Distribution Center or reach out to Guest Services at 1-800-440-0680 for additional information.
Qualifications:
JOIN TARGET CYBERSECURITY AS A LEAD ENGINEER - THREAT DETECTION
About us:
As a Fortune 50 company with more than 350,000 team members worldwide, Target is an iconic brand and one of America's leading retailers.
Working at Target means the opportunity to help all families discover the joy of everyday life. Caring for our communities is woven into who we are, and we invest in the places we collectively live, work and play. We prioritize relationships, fuel and develop talent by creating growth opportunities, and succeed as one Target team. At our core, our purpose is ingrained in who we are, what we value, and how we work. It's how we care, grow, and win together.
Target as a tech company? Absolutely. We're the behind-the-scenes powerhouse that fuels Target's passion and commitment to cutting-edge innovation. We anchor every facet of one of the world's best-loved retailers with a strong technology framework that relies on the latest tools and technologies-and the brightest people-to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out.
As a detection engineer on the Threat Intel Detection Engineering (TIDE) team, you will be an integral piece in securing Target against current and future threats. TIDE works closely with our Cyber Threat Intelligence team to track and build detection for our most sophisticated adversaries. Each engineer is responsible for managing and building subject matter expertise (SME) in our various detection platforms. TIDE engineers will also be called upon to develop bespoke solutions for our detection and workflow needs. While our primary customer is the Computer Security Incident Response Team (CSIRT), we also build tooling and detection for threat hunting, investigations, and intelligence operations. We have access to the latest in technology in EDR (endpoint detection and response) and NSM (network security monitoring) as well as open-source cloud platforms.
This role requires subject matter expertise in SIEM technologies, in particular Logstash and Elasticsearch. You will be responsible for maintaining and building net-new visibility and capability to detect malicious behavior in Target's environment using our on premise, customized SIEM, as well as identifying SIEM improvements that would drive new detection capabilities. Duties include, but not limited to, driving visibility and detection strategy from inception to implementation as well as developing core detection competencies in our enterprise environment.
About you:
- 4-year degree or equivalent experience
- 7+ years of software development experience with at least one full cycle implementation
- Extensive SIEM experience
- Experience with Logstash and Elasticsearch
- Detection engineering experience
- Solid understanding of common source code version control tools: GitHub, BitBucket, SourceForge
- Experience with writing and supporting scripting languages: Python, JavaScript, Ruby, Bash
- Experience with data manipulation practices: Regular Expressions (RegEx), sed, grok
- Experience coaching/mentoring junior developers
- Demonstrates ability to work independently or on small, fast moving teams
- Maintains deep technical knowledge within areas of expertise
- Stays current with new technologies via formal training and self-directed education
- Experience working in an Agile/Scrum team
Americans with Disabilities Act (ADA)
Target will provide reasonable accommodations (such as a qualified sign language interpreter or other personal assistance) with the application process upon your request as required to comply with applicable laws. If you have a disability and require assistance in this application process, please visit your nearest Target store or Distribution Center or reach out to Guest Services at 1-800-440-0680 for additional information.
Qualifications:
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert