Staff Security Engineer

MozillaMozilla·Remote(Remote US)
Software Development

WFA Digital Insight

As demand for cybersecurity specialists surges, companies like Mozilla are at the forefront of shaping a safer internet. With over 225 million users relying on their products, the need for skilled security engineers has never been more pressing. This role offers a unique opportunity to join a flexible team dedicated to protecting users' digital lives. Candidates should be prepared to showcase their expertise in security incident response, threat hunting, and collaboration. The current job market sees a 25% increase in remote security roles, making this a prime chance to leverage your skills and experience.

Job Description

About the Role

As a Staff Security Engineer at Mozilla, you will be part of a dynamic team responsible for safeguarding the company's products and services from cyber threats. This role is pivotal in ensuring the integrity of Mozilla's offerings and protecting its vast user base. The position entails a deep understanding of security protocols, incident response strategies, and the ability to collaborate with diverse stakeholders.

Mozilla has been a champion of internet privacy and security for over 25 years, and this role is central to its mission of making the internet better for people. The company's non-profit status and commitment to open-source software development set it apart from other tech giants, offering a unique work environment for those passionate about digital rights and security.

The Staff Security Engineer will work closely with the incident response team, product development teams, and other stakeholders to identify, mitigate, and respond to security incidents. This is a remote role that requires flexibility, strong communication skills, and the ability to work effectively in a distributed team environment.

What You Will Do

  • Identify and respond to security incidents on a global scale, leveraging expertise in threat analysis and mitigation.
  • Act as an incident commander to drive incidents through the entire response lifecycle, ensuring timely and effective resolution.
  • Design and maintain a portfolio of security alerts, automated actions, playbooks, and escalation workflows to support a high-performing 24/7 incident response capability.
  • Conduct threat hunting activities to anticipate future threats and develop forward-thinking strategies for combating sophisticated threat actors.
  • Research threat intelligence reports, triage, and manage resulting workflows to ensure proactive security measures.
  • Partner with key stakeholders and communicate effectively to maintain a continuously improving feedback loop of preparation, identification, analysis, containment, and post-mortem activities.
  • Participate in on-call rotation, ensuring round-the-clock coverage for incident response.
  • Collaborate with product development teams to integrate security best practices into the development lifecycle.
  • Develop and maintain documentation of security incident response processes and procedures.

What We Are Looking For

  • 5+ years of demonstrated ability in managing security incidents at a global scale and/or experience working in Security Operations Centers (SOC), Product Security Incident Response Teams (PSIRT), and Computer Security Incident Response Teams (CSIRT).
  • Expertise with security information and event management (SIEM) systems, such as ELK, Google BigQuery, Splunk, etc. Splunk proficiency is preferred.
  • Strong understanding of threat intelligence, including the ability to analyze and interpret threat data.
  • Experience with cloud security platforms, including AWS, Azure, or Google Cloud.
  • Knowledge of security frameworks and compliance standards, such as NIST, ISO 27001, etc.
  • Excellent communication and collaboration skills, with the ability to work effectively with technical and non-technical stakeholders.
  • Strong problem-solving skills, with the ability to analyze complex security issues and develop effective solutions.
  • Experience with agile development methodologies and version control systems like Git.

Nice to Have

  • Experience with automation tools, such as Ansible, Puppet, or Chef.
  • Knowledge of programming languages, such as Python, Java, or C++.
  • Familiarity with containerization technologies, such as Docker.
  • Certification in security disciplines, such as CISSP, CISM, or CEH.
  • Experience working in a remote or distributed team environment.

Benefits and Perks

  • Competitive salary and benefits package.
  • Opportunity to work with a leader in the tech industry, shaping the future of the internet.
  • Flexible, remote work environment with a distributed team.
  • Access to the latest technologies and tools in cybersecurity.
  • Professional development opportunities, including training and conference attendance.
  • Health insurance, retirement plans, and other benefits.
  • Paid time off and holidays.
  • A stipend for home office setup and internet connectivity.
  • The chance to be part of a mission-driven organization that prioritizes making the internet better for people.

How to Stand Out

  • Ensure your resume and cover letter highlight specific experiences in security incident response and threat hunting.
  • Prepare to discuss your approach to staying updated with the latest security threats and technologies.
  • Showcase your ability to communicate complex security issues to both technical and non-technical stakeholders.
  • Be ready to provide examples of your experience with SIEM systems and security frameworks.
  • Consider creating a personal project or contributing to open-source security projects to demonstrate your skills.
  • During the interview, ask about the team's dynamics, the company culture, and opportunities for professional growth.
  • Research Mozilla's products and services to understand how your role contributes to the company's mission.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.