Product-Focused Incident Response: Monitor, analyze, and investigate security alerts originating from our AWS infrastructure, application logs, and security tooling (WAF, SIEM, Cloud-Native tools).
Respond to security incidents that directly impact the Tripadvisor Experiences application, such as potential data breaches, application-layer attacks, or infrastructure compromises.
Triage vulnerabilities reported through our bug bounty program and other external sources.
Security Engineering & Automation: Build and maintain security monitoring and alerting capabilities within our production environment.
Automate security operations tasks using scripting languages like Python or Go to improve our detection and response times.
Configure, tune, and help manage security tools like our Web Application Firewall (WAF), AWS GuardDuty, and Security Hub.
Vulnerability Management & Collaboration: Operationalize findings from application security tools (SAST, DAST, SCA) by working with engineering teams to prioritize and remediate vulnerabilities in our codebase and dependencies.
Conduct threat modeling for new features to identify and mitigate risks before they reach production.
Collaborate with engineering teams and provide guidance on secure coding practices and architecture.

AWS Security Operations: Hands-on experience securing a production environment in AWS. You must be comfortable with its core security services (e.g., GuardDuty, Security Hub, WAF, CloudTrail).
AWS Cloud Infrastructure: A good understanding of core AWS services beyond just security tools (e.g., VPC networking, EC2, RDS, S3, Lambda, EKS). You must be capable of understanding and spinning up a full infrastructure stack to effectively secure it.
Infrastructure as Code: Proficiency with Terraform for managing and securing cloud infrastructure. You should be able to read, write, and review Terraform code, ensuring that the infrastructure you define is secure by design.
Incident Response: Proven experience with the full lifecycle of security incidents, from initial detection and analysis to containment, remediation, and post-mortem.
Scripting for Automation: Proficiency in at least one scripting language (e.g., Python, Go, Bash) to automate security operations and analysis tasks.
Application Security Fundamentals: A solid understanding of common web application vulnerabilities (OWASP Top 10) and how to defend against them.

Demonstrated ability to use AI tools to improve efficiency, quality, and decision-making in day-to-day work.
Proven ability to operate effectively with a global-first mindset.

Competitive compensation packages (routinely benchmarked against the latest industry data), including base salary and annual bonuses.
“Work your way” with flexibility to suit your lifestyle.
Tripadvisor Group takes a remote-friendly approach to collaboration across a worldwide team, with the option to join on-site as often as you’d like or as required by your team.
Flexible schedule.
Work-life balance is ingrained in our culture by design. Trust and accountability make it work.
Donation matching. Give back? Give more! We match qualifying charitable donations annually.
Tuition assistance. Want to level up your career? We love to hear it! Receive annual support for qualified programs.
Lifestyle benefit. An annual benefit to spend on yourself. Use it on travel, wellness, or whatever suits you.
Travel perks. We believe that travel is employee development, so we provide discounts and more.
Employee assistance program. We’re here for you with resources and programs to help you through life’s challenges.
Health benefits. We offer great coverage and competitive premiums.

Hybrid

Viator (a Tripadvisor company) is hiring a Cloud Security Engineer II (AWS, SecOps)

Similar Jobs