Wix makes it possible for anyone to succeed online. Since 2006, we’ve grown to 5,000 employees in 17 countries, launched over 30 products, and serve over 230 million users and their visitors worldwide. At Wix, we push you to innovate, evolve in non-traditional ways, and collaborate. We operate in small teams that work closely together at a high level.
Although we’re already industry leaders in web creation and business, our work is nowhere near done. Our goal is to become the main engine of the Internet so we can create a more open web for all.
- Work with and guide the Security Operations Center (SOC)
- Identify needed log sources to monitor and integrate them with the SIEM
- Identify and analyze highly suspicious alerts and notify users of malware infections and investigations
- Perform preliminary static and dynamic analysis of threat actors’ malicious tools (stagers, exploit kits)
- Identify recurring events and Implement automated processes for investigation and mitigation
- Perform full Incident Response (IR) and/or memory forensics
- Perform Post Mortem for Incident Response events according to team policy
- Perform proactive Threat Hunting to identify threat actors in Wix systems
- Testing and implementing innovative new IR solutions across Wix Systems
- Develop automations and playbooks for the SOC team
- An IR & Threat Hunting Engineer with 3+ years of experience in cyber security and Incident response field.
- You understand and are familiar with business security processes
- You have excellent knowledge of operating systems internals and endpoint security experience (Windows / Mac /Linux Internals)
- You know behind the scenes how APT campaigns, attack Tactics, Techniques and Procedures (TTPs), memory injection techniques, static and dynamic malware analysis, and malware persistence mechanism works
- You have Proven experience with implementing automated processes with SOAR systems
- You have a good knowledge of the MITRE ATTACK framework
- You are familiar with dynamic and static malware analysis tools, Sysinternal tools, etc.
- You have good verbal and written communication skills in English
- Proven knowledge of scripting languages like Python
- You can multitask, work on multiple events and communicate with other team members
- You are highly motivated, self-driven, and can work independently and within a team
Bonus points if you have:
- Prior knowledge of a cloud-based environment
- Ability to envision security solutions and bring them to fruition
- Have IT\System background
- Have experience with visualization tools(Kibana, Grafana, etc)
Additional Information
We are Wix’s Security Guild. We’re a group of highly motivated Security Engineers that form part of the Wix R&D group. We allow Wix Developers and users to achieve their goals without risk, often meaning we find or create unique solutions. Our work is exceptionally challenging due to Wix’s scale, agility, and advanced technical diversity. When it comes to technology, we have the ultimate playground, and although we work together closely, there’s always space for independence, innovation, and creativity.
***
We’re proud to be an equal opportunity employer. Wix was built around the idea that everyone has the right to be successful, online. This same vision defines us as an employer: creating a work environment where everyone is welcome, and anyone has the right to succeed.
