Senior Security Operations Engineer (Viator) at TripAdvisor
Lisboa, Área Metropolitana de Lisboa, Portugal -
Full Time


Start Date

Immediate

Expiry Date

15 Aug, 25

Salary

0.0

Posted On

15 May, 25

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Network Forensics, It, Powershell, Security Tools, Travel, Automation Tools, Automation, Bash, Cloud Security, Network Traffic Analysis, Scripting Languages, Aws, Security Operations, Azure, Soar

Industry

Information Technology/IT

Description

ABOUT VIATOR

Viator, a Tripadvisor company, is the leading marketplace for travel experiences. We believe that making memories is what travel is all about. And with 300,000+ travel experiences to explore—everything from simple tours to extreme adventures (and all the niche, interesting stuff in between)—making memories that will last a lifetime has never been easier. With industry-leading flexibility and last-minute availability, it’s never too late to make any day extraordinary. Viator. One app, 300,000+ travel experiences you’ll remember.
As a Senior Security Operations Engineer, you’ll help take our security processes to the next level. This is achieved through security operations focused on event data, incident response, tooling, and automation to focus on what matters. In this role you’ll also act as a security champion, working closely and tirelessly with Developer Experience, SRE’s, Infrastructure team, in helping them make security-conscious decisions.
Viator is a remote-first company. This role will be primarily remote with fortnightly visits to our office in Lisbon.

PREFERRED EXPERIENCE:

  • Deep expertise with advanced SIEM platforms (e.g., Splunk, ArcSight, Wazuh or similar).
  • Experience with security automation tools (SOAR), threat intelligence platforms, and incident response orchestration.
  • Familiarity with threat modelling, red-team/blue-team exercises, and advanced attack simulation techniques.
  • Experience with cloud security and infrastructure monitoring (AWS, Azure, GCP).
  • Knowledge of network traffic analysis, endpoint detection, and network forensics.
  • Proficiency in scripting languages (e.g., Python, PowerShell, Bash) for automation and custom security tools.
  • Experience in managing large-scale security operations and security project management.

WE ASPIRE TO LEAD; WE’RE RELENTLESSLY CURIOUS;… WANT TO KNOW MORE? READ UP ON OUR VALUES:

  • We aspire to lead. Tap into your talent, ambition, and knowledge to bring us – and you – to new heights.
  • We’re relentlessly curious. We push beyond the usual, the known, the “that’s just how it’s done.”
  • We’re better together. We learn from, accept, respect, support, and value one another– and are creating something remarkable in the process.
  • We serve our customers, always. We listen, question, respond, and strive for wow moments.
  • We strive for better, not perfect. We won’t get it right the first time – or every time. We’ll provide a safe environment in which to make mistakes, iterate, improve, and grow.
  • Our workplace is for everyone, as is our people powered platform. At Tripadvisor, we want you to bring your unique identities, abilities, and experiences, so we can collectively revolutionize travel and together find the good out there.

    LI-TA1

Viator

LI-Hybrid

Responsibilities
  • Take ownership of security incidents, leading cross-functional teams to resolve issues and mitigate risks.
  • Design and implement advanced SIEM solutions, ensuring they integrate with various monitoring tools and provide robust event detection.
  • Develop advanced runbooks and playbooks that support complex incident types and cross-team collaboration.
  • Facilitate tabletop exercises with stakeholders across multiple departments to improve incident response procedures.
  • Oversee the implementation of security monitoring and ensure tools are aligned with best practices.
  • Mentor and coach junior engineers, providing guidance on threat intelligence, incident management, and security automation.
  • Refine and drive the implementation of playbooks and runbooks to ensure quick, effective response to complex security incidents.
  • Identify operational bottlenecks and suggest improvements to reduce incident resolution time.
Loading...