GitHub Security is growing our incident response team and looking for an IR Analyst to identify and respond to attacks on our infrastructure and users.
This incident responder will work closely with our customer support team to handle user & organization incident response, as well as provide security monitoring and IR support for our production and corporate systems.
In conjunction with IR duties, this role will involve building tools and scripts to improve our security monitoring & response capabilities.
This person will need to be located in the US.
5+ years professional work experience in a technical role, with at least two years experience focused on security and incident response.
Experience with common log analysis systems such as the ELK stack, Splunk, and SIEM tools.
Firm understanding of system/networking technologies and web based platforms (e.g.
Linux, TCP/IP, Ruby on Rails, etc.)
Solid understanding of common identity verification & authentication methods, and limitations of such methods.
Experience with the entire IR lifecycle and collaborating with internal & external teams to improve the security of the system.
Development experience with Ruby/Rails, Python, or a similar language, to interact with JSON based REST APIs.
Exceptional documentation & written communication skills.
Experience investigating incidents involving multiple targets and complex web service authorization schemes.
Fraud, anti-spam, and social engineering investigation experience is a big plus.
Incident response experience in a SOC environment.
Help desk/end user support experience.
Experience working with Git & GitHub.
Who we are
GitHub is the best place to share code with friends, co-workers, classmates, and complete strangers.
Over eight million people use GitHub to build amazing things together.
With the collaborative features of GitHub.com, our desktop and mobile apps, and GitHub Enterprise, it has never been easier for individuals and teams to write better code, faster.
We have a lot of exciting things to do, and we’re looking for the right people to grow with us!
Why you should join
Working at GitHub is, to put it simply, a special slice of the universe.
We're committed to transparency, collaboration, experimentation, and always staying classy.
Because of this unique perspective, we've established one of the most flexible and well designed physical workspaces around that encourages you to work as you work best.
Right now, over 60% of our employees are based outside of our San Francisco (SOMA) headquarters and work according to how they get their best stuff done.
Ensuring that GitHubbers are healthy, motivated, focused and creative is how GitHub stays awesome.
Part of this is ensuring that our benefits
* are out of this world.
In a nutshell, we've built and are growing a place where we truly love working, and we think you will too.
GitHub is made up of people with many different backgrounds and lifestyles, and we like it that way.
We invite applications from people of all stripes.
We don't discriminate against employees or applicants based on gender identity or expression, sexual orientation, race, religion, age, national origin, citizenship, pregnancy status, veteran status, or any other differences that people imagine to discriminate against one another.
Also, if you have a disability, please let us know if there's anything we can do to make the interview process better for you; we're happy to accommodate.
Please note that benefits vary by country, if you have any questions don't hesitate to ask your recruiter!