About Gap Inc.
Our brands bridge the gaps we see in the world.Old Navy democratizes style to ensure everyonehas access to quality fashion at every price point. Athleta unleashes the potential of every woman,regardless of body size, age or ethnicity. BananaRepublic believes in sustainable luxury for all. And Gapinspires the world to bring individuality to modern, responsibly madeessentials.
This simple idea-that we all deserve to belong,and on our own terms-is core to who we are as acompany and how we make decisions.Our team is made up of thousands of people across the globe who take risks, think big, and do good for our customers, communities, and the planet.Ready tolearn fast, create with audacityand lead boldly? Join our team.
About the Role
GapTech Information Security, the global information security function for Gap Inc. inclusive of, and across, all Gap Inc. brands; is looking for a security-minded, result-oriented and accountable individual to become a member of the Defensive Engineering team. This role is an independent contributor and will be reporting to the Director of Information Security. This security engineer will be part of a global team of experienced engineers; supporting overall detection engineering tools and process. The engineer will also be working with peers from within the immediate team on cyber security attack surface asset management solutions, as well as cross-functional teams across Information Security and the larger GapTech organization.
This role is based out of the San Francisco office. Currently, job duties are being performed remotely. However, the Company may in the future require you/this role to be in the office on a full-time or part-time basis. Pursuant to Gap Inc.'s policy, all employees who wish to enter Gap Inc.'s San Francisco Bay Area, New York, and Albuquerque office buildings will need to be vaccinated, unless an exemption from the vaccine requirement is approved due to an accommodation for a disability or for a sincerely held religious belief.
What You'll Do
Experience with Splunk SIEM and SOAR using advanced SPL language and data models or other SIEM tools to detect threats and attacks.
Proactively identify log sources with detection and hunting values and facilitate onboarding and tuning in order to have better efficacy
Work with our CDC teams to create high-fidelity detection content (both rule-based and behavior-based)
Design, implementation and administration of various security technologies as they relate to detection and hunting.
Utilize knowledge of latest threats and attack vectors to develop Splunk correlation rules for continuous monitoring
Develop, manage, and maintain Splunk data models.
Review logs to determine if relevant data is present to accelerate against data models to work with existing use cases
Build SOAR use-cases to automate and streamline detection and hunting workflows
Nice to have: Experience with Vulnerability management tools and cyber security asset attack surface management(CAASM) tools for identifying threat information such as security vulnerabilities.
Work across internal red teams, purple team across InfoSec and tech organizations to identify and minimize risks and support detection and response capability.
Develop custom dashboards and reports for customer stakeholders
Who You Are
Experience with SIEM, SOAR tools. Good knowledge of Data Models, Data Normalization, Enrichment, Automation.
Experience developing advanced correlation rules utilizing stats and data models for cyber threat detection
Deep knowledge level of well-known vulnerabilities, exploits and penetration testing.
Benefits at Gap Inc.
Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic and Athleta, and 30% off at Outlet for all employees.
One of the most competitive Paid Time Off plans in the industry.*
Employees can take up to five -on the clock- hours each month to volunteer at a charity of their choice.*
Extensive 401(k) plan with company matching for contributions up to four percent of an employee's base pay.*
Employee stock purchase plan.*
Medical, dental, vision and life insurance.*
See more (https://corporate.gapinc.com/en-us/careers/gap-inc-careers/gap-inc-benefits) of the benefits we offer.
*For eligible employees
Gap Inc. is an equal-opportunity employer and is committed to providing a workplace free from harassment and discrimination. We are committed to recruiting, hiring, training and promoting qualified people of all backgrounds, and make all employment decisions without regard to any protected status. We have received numerous awards for our long-held commitment to equality and will continue to foster a diverse and inclusive environment of belonging. This year, we've been named as one of the Best Places to Work by the Human Rights Campaign (https://www.hrc.org/resources/best-places-to-work-for-lgbtq-equality-2022) for the seventeenth consecutive year and have been included in the 2021 Bloomberg Gender-Equality Index for the fourth year in a row.
