Expedia Group brands power global travel for everyone, everywhere. We design cutting-edge tech to make travel smoother and more memorable, and we create groundbreaking solutions for our partners. Our diverse, vibrant, and welcoming community is essential in driving our success.

SECURITY ENGINEER I:

Expedia Technology teams partner with our Product teams to create innovative products, services, and tools to deliver high-quality experiences for travelers, partners, and our employees. A singular technology platform powered by data and machine learning provides secure, differentiated, and personalized experiences that drive loyalty and traveler satisfaction.
The Security Engineering function at Expedia Group falls within our Enterprise Technology, Security & Privacy (ETSP) organization. We ensure EG is realizing business value through technology - technology that is secure, trusted and scales efficiently to the needs of the company - all for delivering great experiences for our employees, travelers, and partners.
We are seeking a Security Engineer to join our Security Engineering Operations team to manage the technology solutions we use to protect our critical systems and customer data. As a Security Engineer, you should have foundational experience in security software deployment, configuration and maintenance, and day to day administration of security systems. The right person for this role should have a strong understanding of cybersecurity principles, threats, and security best practices.
If you are passionate about cybersecurity, we invite you to apply for the security engineering position and become a vital part of our team!

EXPERIENCE AND QUALIFICATIONS:

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field; or equivalent related professional experience
• 1+ years of experience in cybersecurity, IT security, or related fields.
• Hands-on experience with security tools such as firewalls, EDR, antivirus & anti-malware software, FIM, DLP, SIEM platforms, and vulnerability scanners.
• Basic understanding of networking, operating systems (Windows and Linux), and cloud security principles.
• Familiarity with security and compliance frameworks such as PCI DSS, SOX, SOC2, NIST, CIS, ISO 27001.
• Strong analytical and problem-solving skills.
• Preferred: Industry certifications such as CompTIA Security+, CEH, or GIAC are a plus.
• Preferred: Experience with scripting or automation (Python, PowerShell, Bash) is a plus.
• Preferred: Exposure to cloud technologies and security (AWS, Azure, or Google Cloud) is desirable.
  The total cash range for this position in Austin is $87,500.00 to $123,000. Employees in this role have the potential to increase their pay up to $140,000, which is the top of the range, based on ongoing, demonstrated, and sustained performance in the role.
  The total cash range for this position in Seattle is $87,500.00 to $122,500.00. Employees in this role have the potential to increase their pay up to $140,000.00, which is the top of the range, based on ongoing, demonstrated, and sustained performance in the role.
  Starting pay for this role will vary based on multiple factors, including location, available budget, and an individual’s knowledge, skills, and experience. Pay ranges may be modified in the future.

• Assist in the deployment, configuration, and maintenance of security tools and technologies (DLP, Firewall/WAF, SIEM/SOAR solutions, Endpoint security, etc.).
• Monitor system alerts, troubleshoot potential issues and incidents, and support incident response activities.
• Conduct vulnerability assessments and assist in remediating security risks.
• Support security patch management, system hardening, tool monitoring & reporting, user access reviews and cloud compliance efforts.
• Assist in maintaining security policies, procedures, and documentation.
• Conduct security reviews and participate in Compliance Audits
• Collaborate with IT and development teams to ensure security best practices are implemented.
• Stay updated with the latest security threats, trends, and regulatory requirements.