Principal Cyber Security Incident Response Engineer

March 6

Apply Now

Receive Emails with Similar Jobs

Stitch Fix

WebsiteLinkedInAll Job Openings

Stitch Fix is a personal styling service that offers a unique and personalized approach to fashion for women, men, and kids. Clients start by taking a style quiz, which helps Stitch Fix understand their preferences, sizes, and budget. Based on this information, a personal stylist selects five personalized clothing pieces that are shipped directly to the client's door. Customers can choose to keep and purchase any items they like, with the $20 styling fee applicable to kept items. Stitch Fix carries a wide range of sizes and offers free shipping and returns. The service is flexible, with no subscription required, allowing customers to order style boxes on demand or at regular intervals. Stitch Fix also offers a 'Freestyle' shopping option where clients can browse curated suggestions based on their preferences. The company covers a wide variety of styles from numerous brands, ensuring there are options to suit various fashion tastes and needs.

shopping • personal styling • e-commerce • technology • data science

5001 - 10000 employees

Founded 2011

👗 Fashion

🛒 Retail

🛍️ eCommerce

💰 $36.9M Venture Round on 2017-11

📋 Description

• At Stitch Fix, we operate in a cloud-first environment and are seeking a Principal Incident Response Engineer to lead security initiatives. • This role will focus on incident response, implementing best practices across infrastructure, network security, and cloud environments, as well as ensuring compliance and policy adherence. • This role is part of the Security Team and collaborates closely with Platform and Development teams. • The ideal candidate should have extensive experience in Incident Response, container technologies, and deployment and integration patterns within a production AWS environment. • You will collaborate to develop innovative security solutions, leveraging the right tools while contributing to design and architecture across multiple systems. • You're eager to expand your expertise and help us integrate new technologies. • Most importantly, you are deeply committed to protecting our clients and employees from threats. • You will ensure that technology solutions address real business challenges and provide valuable insights to team members and business partners.

🎯 Requirements

• 6+ years of experience in Security, preferably in an Incident Response or similar "first responder" role. • Experience leading and assisting with Security Incident analysis, documentation, and response coordination. • Proficient with the cyber security incident lifecycle and hands on involvement in security event handling. • Understanding of common adversarial tools, attack techniques, and Indicators of Compromise (IOCs). • Intermediate to advanced knowledge of APT groups, TTPs (Tactics, Techniques, and Procedures). • AWS experience is required; familiarity and high degree of proficiency with AWS services (e.g., Route53, IAM, Security Groups, SNS, S3, Lambas, CloudWatch, Cloud Trail). • Hands-on experience with AWS environments, particularly in a security context; familiarity with AWS security services (e.g., Security Hub, GuardDuty, Macie). • Hands on working knowledge of Infrastructure as Code (IaC) concepts and tools such as Terraform and Docker. • Understand the use of CI/CD pipelines and their role in a security context. • Experience optimizing and integrating common logging solutions (e.g., Splunk, SumoLogic, Datadog). • Ability to interpret logs, events and escalate potential security threats and findings. • Hands-on investigative and deployment experience with Endpoint Detection & Response (EDR) solutions like CrowdStrike. • Proficient with scripting languages (e.g., Python) developing automation and security workflows. • Ability to follow established security procedures and lead incident response efforts. • Strong written communication skills for security documentation and reporting. • Ability to collaborate with cross-functional teams and assist in security investigations. • Knowledge of common development practices, tools and how it applies in a security context. • Eager and willing to learn and develop new skills in security automation and cloud security. • Have the ability and experience to mentor and develop junior team members, fostering growth within the team. • Ability to follow established investigative processes including management & escalation procedures while working with other senior team members during an incident; includes drafting a SITREP and driving post-mortems. • Excel in engaging with cross-functional teams during an incident in parallel with leading an active investigation and influencing favorable outcomes outside of security. • Posses the ability to stay calm "under pressure" while leading an incident to resolution in potential high-stress and time sensitive environments.

🏖️ Benefits

• This position is eligible for medical, dental, vision, and other benefits. • This position is eligible for new hire and ongoing grants of restricted stock units depending on employee and company performance. • Comprehensive compensation packages and inclusive health and wellness benefits. • Applicants should apply via our internal or external careers site.