Senior Information Security Operations Engineer



Position Title:  Senior Information Security Operations Engineer  
Location:  Milpitas, CA
Come join the FireEye team responsible for protecting FireEye!  With a unique responsibility as a security team protecting a forward-thinking next generation security company, joining the FireEye Information Security Risk Management (ISRM) team is truly an exciting career opportunity.  This is an elite team led by a Chief Information Security Officer in the Operation Services organization.  The ISRM team is focused on protecting the company, protecting the customers and advancing the industry as we deal with a very dynamic and evolving threat landscape. We have a unique set of challenges and require experienced and creative problem solvers. 
We are looking for an experienced, mid-level Information Security Operations Engineer to join our team in helping to defend FireEye. As a member of the Information Security Operations team, the successful candidate will provide technical expertise in security monitoring and incident response. You will be responsible for interpreting, analyzing, and correlating complex security events from a distributed and global environment in order to find indicators of compromise.  You will also work in close collaboration with internal and external groups to develop new capabilities to improve security situational awareness across the enterprise.  This is a hands-on role in a fast-paced team and requires and individual who understands and can effectively respond to cyber-attacks.


  • Identify security issues and risks associated with security events and manage the incident response process.
  • Participate in the incident response and investigation process for identified security events.
  • Perform network and system forensics in response to security incidents.
  • Optimize and customize security-monitoring tools in order to improve detection.
  • Hunt for signs of APT activities.
  • Work with various business units to conduct vulnerability scanning and respond to vulnerability reports.
  • Maintain and update the security operational workflow.
  • Respond to incident reports.


  • In-depth knowledge of security monitoring and incident response.
  • Knowledge of conducting security investigations.
  • Experience with using and customizing SIEM products.
  • Solid understanding of network protocols and architecture.
  • Demonstrated experience with performing digital forensics and incident response using tools such as HX, Mandiant Intelligent Response, FireEye Redline, RedSeal, Encase, or other enterprise tools.
  • Experience with network intrusion detection and analysis tools such as Bro, Suricata, Sourcefire, Snort and Wireshark.
  • Demonstrated experience with log analysis and administering enterprise log aggregation systems (Splunk, ELSA, Logstash).
  • Exposure to advanced malware technologies.
  • Experience solving problems with scripting languages such as Perl, Python, PowerShell or Bash.
  • Bachelor’s degree in computer science (or equivalent) is required.
  • Prior experience working in information security operations or Security Operations Center is preferred.
  • At least 4 years of documented information security work experience is required including:
    • Demonstrated experience operating information security tools is required.
    • Demonstrated experience integrating information security tools is required.
    • Demonstrated experience in incident response is required.
  • Certifications such as CISSP and SANS are a plus.
  • Understanding of the tactics, techniques and procedures of advanced attackers.
  • Exposure to protecting cloud-based and distributed infrastructures.
  • Ability to leverage multiple forms of communication to articulate complex concepts to both technical and non-technical staff, including senior management.
  • Demonstrated success at communicating in writing to both internal and external stakeholders, including vulnerability researchers.
  • Experience dealing with public vulnerability disclosure and response.

Additional Qualifications

FireEye is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. Click here to view the full EEO/AA statement.

FireEye is an Equal Opportunity Employer:

Connect with FireEye

  • LinkedIn
  • Twitter
  • Facebook
  • Google+
  • YouTube
  • Glassdoor

 Print Version

Our Values

Do It Right

Be Curious

Fixate on Challenges

Put the Customer First

Be Respectful



News and Events

Technical Support

FireEye Blogs

Threat Map

Contact Us

  • +1 877-347-3393

Stay Connected

<!-- Google Code for Remarketing Tag --> <div style="display:inline;"><img height="1" width="1" style="border-style:none;" alt="" src=";guid=ON&amp;script=0"/></div> <!-- Just Media Code for remarketing tag --> <img height="1" width="1" alt="" style="display:none;" src="//"/> </div>

Read Full DescriptionHide Full Description
Confirmed 11 hours ago. Posted 30+ days ago.

Discover Similar Jobs

Suggested Articles

One Step Register
Need an account? Sign Up