Twitter is what’s happening and what people are talking about right now. For us, life's not about a job, it's about purpose. We believe real change starts with conversation. Here, your voice matters. Come as you are and together we'll do what's right (not what's easy) to serve the public conversation.

Who We Are

The Detection & Response Team focuses on identifying and responding to security incidents targeting Twitter. Our primary mission is to help protect Twitter’s customers, its employees, and the company's data. We accomplish this by identifying and responding to unusual or malicious information security threats and performing investigations into computer security incidents.

What You’ll Do

You'll join a team of talented individuals focused on identifying and responding to security and privacy incidents impacting Twitter, its customers, and employees. You’ll be responsible for investigating, validating, classifying, and responding to security and privacy events. When performing investigations you will help us answer "what happened", "why did it happen", "what was the impact", and "how do we remediate". During investigations you will have the opportunity to hone your investigative skills by performing forensic data analysis for a wide range of security events. You will be responsible for keeping detailed timelines and thorough documentation of incidents. When responding to an incident you will lead a cross-functional group of security and privacy professionals, engineers, lawyers and more to remediate the issue.  You will also design new and improve processes and procedures to improve incident handling and streamline security event processing.

Who You Are

You have experience in investigating and responding to security incidents. You're an advocate for the security and privacy of users and their data. When faced with ambiguity you aren't intimidated and you seek answers through peers, documentation, experts, experimentation, and more. You are detailed in your documentation of events and comfortable communicating time-sensitive and relevant information to audiences with a wide range of technical knowledge. You love learning from and engaging with peers, researchers, and other experts in the security community. You aren't satisfied with the status quo; you look for opportunities to simplify, automate, and improve.

Preferred Qualifications:

• Experience performing computer security incident detection & response activities

• Knowledge and understanding of malware, attacker tactics, techniques, and procedures. 

• Knowledge of common application/system vulnerabilities, threat actors and mitigations.

• Experience with using forensic analysis tools in an incident response context

• Knowledge of at least two of these security topics: malware analysis, software vulnerabilities, cryptography, web application security, identity and access management, network security, operating system hardening, data forensics

• Systems administration experience in Linux, Windows and/or macOS is a plus.

• Experience with cloud deployment environments such as GCP or AWS.

• Experience with SQL and large datasets, specifically for security investigations

• Experience communicating security concerns and issues to non-technical audiences.

• Flexibility to participate in a 24/7 on-call rotation

Additional information:

A few other things we value:

We care about making work happy and productive for everyone, with the option to work from home and remotely when you need, wellness benefits, six months of parental leave, and unlimited vacation that we believe you should be taking. We love sharing knowledge and ideas. Within our team, we have regular lightning talks.

We regularly get together with the other Twitter engineering teams for tech talks. And there are many study groups you can join.

A few other things we value: Ethics - Ethical behavior means that we expect our team to work within their limits, ask for assistance, keep conclusions fact-based, and respect all of their professional responsibilities.

Challenge - We solve some of the industry’s hardest problems. Come to be challenged, learn, and thrive as an engineer.

Diversity - Diversity makes us a better organization and team. We value diverse backgrounds, ideas, and experiences.

Work, Life, Balance - We work hard, but we believe with hard work there should come balance.

Collaboration - There’s that saying, “If you want to go fast, go alone. If you want to go far, go together.” We want to go far. Variety - We encourage team rotations that allow you to work with and learn from other teams at Twitter.

We are committed to an inclusive and diverse Twitter. Twitter is an equal opportunity employer. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, age, disability, veteran, genetic information, marital status or any other legally protected status. San Francisco applicants: Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records

All your information will be kept confidential according to EEO guidelines.