EA Security and The Challenge Ahead:
From nation states to financially motivated cyber threats to disgruntled players, EA has a unique and ever-changing threat landscape. It is the job of the Threat Intelligence Unit to stay ahead of these adversaries, to understand their tactics and make sure their attacks are not successful against our networks.
Through analysis of attacks, we can develop detections to identify attacker techniques. You will help ensure that the detections created are effective throughout their lifecycle. You will work with several important individuals and teams including IR Operations, SOC, IR Engineering, and Red Team to perform detection validation work using technologies such as AttackIQ or manually as required.
What a Detection Validation Expert does at EA:
Use AttackIQ to create detection validators for functional detections. Splunk use cases are up next. S1 validators have been created by the team.
Implement and improve the existing quarterly detection validation cycle.
Work with team members to run periodic Attack IQ test cycles to identify issues with detections and identify gaps.
Run manual tests for detections that are not incorporated into AttackIQ.
Work with engineering team on the care on feed of the AttackIQ platform.
Implement new features from AttackIQ as necessary to increase efficiency for detection validation work.
Support with Purple teamwork applying AttackIQ and other methods.
Ensure that the detection validation work ties in with Threat Intelligence.
You will have one or more of the following:
Hands-on experience with AttackIQ or a similar technology.
Experience doing purple teamwork.
5+ years of experience with Cyber Security and working within a Security function
Some experience performing threat intelligence tasks to include adversary profiling and extraction of TTPs to create detections against.
Enjoy solving problems and like to learn new technical and non-technical analysis techniques to overcome problems
Understand in areas such as Networking, Operating systems, Computer Architecture
About EA We exist to inspire the world to play. Through innovative technology and immersive storytelling, we deliver new ways of experiencing worlds of interactive entertainment for our millions of players worldwide. Our strength lies in the diversity of our people, combining creativity, innovation and passion. We fully champion inclusive culture, and provide opportunities for growing, learning, and leading that allows for the most impactful and rewarding work of our teams’ careers. We put our people first, and we make sure they’re taken care of both in and out of the office. As we reflect on our learnings and successes from remote work, we aim to provide dynamic, collaborative and flexible work environments for our teams. Our employees connect through our Employee Resource Groups, which are actively involved in driving business decisions every step of the way. But our support doesn’t end at the workplace—we also encourage a balanced lifestyle with paid time off and new parent leave, free video games, fitness reimbursement and more. Our goal is to provide a safe, respectful and inspiring workplace for all of our employees. Through our diversity, equity, inclusion and social responsibility programs, we’re doing the work to give everyone the space to be their full selves while giving back to our community. We’re looking for problem-solvers, game-changers, innovators, dreamers, doers—people that are ready to move the needle and build on our success. As our industry accelerates, we aren’t just keeping up—we’re staying ahead of the game. Electronic Arts is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. Electronic Arts also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.