Security Analytics Engineering Lead

Requisition Number: 155576

Position Title: Software Engineer III - Security

External Description:

Security Analytics Engineering Lead

Game on…

Protecting our players and our employees from hacks and attacks is the core focus of the EA Security team – and we love what we do.  You have a chance to work in a cutting-edge entertainment company whilst also driving critical security initiatives for players and employees world-wide. You will utilise your outstanding engineering skills, communications capabilities, and analytical problem-solving skills in delivering results through collaboration with our EA Security leadership team, IT and Digital Platform teams, and Game Studios. This position reports to the Vice President of Enterprise Security in the EA Security group. 

 

What you will do as a Lead Security Analytics Engineer at EA:

You’ll make EA a secure place to work and build amazing games. You will be a key member of the Incident Response Engineering team and report into EA’s Global Security Incident Response team (GSIRT)

The mission of this role will be to directly lead, evolve and help manage EA’s Elastic based SIEM (security analytics / attacker visibility platform), working closely with Incident Response analysts, IR software developers, Ops staff, the Security Architect for the platform, and stakeholders across EA’s Cloud Engineering and IT teams, as well as other business groups such as Governance and Game and Platform Security Engineering.

This role will serve as the engineer for evaluating related technical solutions, deploying them, streamlining operations, and ensuring that we have an effective way to gain visibility into possible attacker behavior whilst also making our alerts and operations efficient and effective for our security analysts.

The IR Engineering team is a flexible team, meaning you may also work across the team on other initiatives; such as security tool PoC’s, building out red team automated attack platforms (e.g. Caldera, AttackIQ etc.), and other security engineer related activities.

 

Primary Responsibilities

• Perform full-scope (R&D through to implementation) engineering activities on new IR capabilities for SIEM platform.
• Provide SME activities relating to SIEM's Elastic ecosystem.
• Adopt an approach that ensures that our security analytics or attacker visibility solutions are current, modern, effective and usable for our Security Operations Center and analysts.
• Maintain a strong understanding of attacker behavior and how best to gain visibility using the solutions in-play at EA, so that we can adjust to changing internal and external drivers.
• Work with EA-wide teams to on-board new log sources to SIEM.

• Big data analytics and machine learning – projects to look for unknown internal and external threats.

• Define high level operational maturity design for collector infrastructure.
• Direct ops team to Break-fix work for SIEM platform.

 

Skills, Knowledge, and Abilities

• Experience with Security Information and Event Management (SIEM) across security solutions, sensors and applications as well as non-security, but important, logging / monitoring flows.
• Data analytics or Security experience, being involved in the development of a SIEM (ELK experience highly desired but not essential).
• Experience defining / using Amazon Web Services-based Cloud infrastructure (IaaS), and awareness and ability to expand to other Cloud Service Providers.
• Experience working with (and developing pipeline configurations for) Logstash.
• Proven project management experience, including; risk identification and remediation, project planning, deployment, testing and remediation activities.
• Hands-on experience leveraging Mitre Att&ck Framework to identify TTPs that are most relevant to EA and align the SIEM detection and collection requirements.
• Demonstrable ability to understand IT and business challenges and be comfortable with tackling a risk-based approach to complex compliance issues.
• Must be able to learn, understand and apply new technologies.
• Background in providing technical security guidance and performing security design reviews.
• Solid understanding of assessing and designing internal security or mitigating controls for Information Security within an Enterprise-level environment.

 

Additional Requirements

• Must be willing to travel to other EA locations as necessary.
• Excellent overall communications, presentation, facilitation and diplomacy skills.
• Problem solving skills, ability to prioritize and work independently.
• Excellent interpersonal and conflict resolution skills.
• Demonstrable ability to work effectively in a fast-paced, high volume, deadline-driven environment.
• Ability to balance multiple demands and work both independently and as part of a team.
• Strong organisational skills.

City:

State:

Community / Marketing Title: Security Analytics Engineering Lead

Company Profile:

We are a global team of creators, storytellers, technologists, experience originators, innovators and so much more. We believe amazing games and experiences start with teams as diverse as the players and communities we serve. At Electronic Arts, the only limit is your imagination.

EEOText:

About Electronic Arts

Everything we do is designed to inspire the world to play. Through our cutting-edge games, innovative services, and powerful technologies, we bring worlds with infinite possibilities to millions of players and fans around the globe.

We’re looking for collaborative and inclusive people with diverse perspectives who will enrich our culture and challenge us. We take a holistic approach with our benefits program, focusing on physical, emotional, financial, career, and community wellness to support our people through every chapter of life. We provide comprehensive benefit packages and support for a balanced life with paid time off and new parent leave, plus free games and so much more. Our goal is to provide a safe and respectful workplace that empowers you to thrive in both work and life.

Electronic Arts is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. We will also consider employment qualified applicants with criminal records in accordance with applicable law. EA also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.

Days Open: 83

Can this position be remote?:

EEO Employer Verbiage:

About Electronic Arts

Everything we do is designed to inspire the world to play. Through our cutting-edge games, innovative services, and powerful technologies, we bring worlds with infinite possibilities to millions of players and fans around the globe.

We’re looking for collaborative and inclusive people with diverse perspectives who will enrich our culture and challenge us. We take a holistic approach with our benefits program, focusing on physical, emotional, financial, career, and community wellness to support our people through every chapter of life. We provide comprehensive benefit packages and support for a balanced life with paid time off and new parent leave, plus free games and so much more. Our goal is to provide a safe and respectful workplace that empowers you to thrive in both work and life.

Electronic Arts is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. We will also consider employment qualified applicants with criminal records in accordance with applicable law. EA also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.