Staff Security Engineer

Mozilla is seeking a Staff Security Engineer to join our Security team, focusing on incident response across our products and services. This role is pivotal in maintaining the integrity of Mozilla's offerings and ensuring user safety within a company dedicated to building a more secure internet.

The primary responsibilities include identifying and responding to security incidents on a global scale, acting as an incident commander throughout the response lifecycle, and designing and maintaining security alerts, automated actions, playbooks, and escalation workflows. Additionally, the role involves conducting threat hunting activities, researching threat intelligence reports, and collaborating with key stakeholders to enhance our incident response capabilities.

Candidates should have over 5 years of experience managing security incidents globally or working in Security Operations Centers (SOC), Product Security Incident Response Teams (PSIRT), or Computer Security Incident Response Teams (CSIRT). Expertise with security information and event management (SIEM) systems, such as ELK, Google BigQuery, or Splunk, is essential. Proficiency in integrating and leveraging threat intelligence for detection engineering, as well as experience with security orchestration and automation platforms like Tines or Splunk SOAR, is also required. Strong communication and leadership skills are crucial for effective collaboration across diverse teams.

Mozilla offers a comprehensive benefits package, including performance-based bonus plans, rich medical, dental, and vision coverage, generous retirement contributions with immediate vesting, quarterly all-company wellness days, country-specific holidays plus a day off for your birthday, a one-time home office stipend, an annual professional development budget, a quarterly well-being stipend, considerable paid parental leave, and an employee referral bonus program. Additional benefits vary by country.