Senior Cyber Security Engineer

Company Overview

ImmunityBio, Inc. (NASDAQ : IBRX) is a commercial-stage biotechnology company developing cell and immunotherapy products that are designed to help strengthen each patient's natural immune system, potentially enabling it to outsmart the disease and eliminate cancerous or infected cells.

We envision a day when we no longer fear cancer, but can conquer it, thanks to the biological wonder that is the human immune system.

Our scientists are working to develop novel therapies that harness that inherent power by amplifying both branches of the immune system, attacking cancerous or infected cells today while building immunological memory for tomorrow.

The goal : to reprogram the patient's immune system and treat the host rather than just the disease.

Why ImmunityBio?

• ImmunityBio is developing cutting-edge technology with the goal to transform the lives of patients with cancer and develop next-generation therapies and vaccines that complement, harness and amplify the immune system to defeat cancers and infectious diseases.
• Opportunity to join a publicly traded biopharmaceutical company with headquarters in Southern California.
• Work with a collaborative team with the ability to work across different areas of the company.
• Ability to join a growing company with professional development opportunities.

Position Summary

The Senior Cyber Security Engineer will be part of the enterprise security organization and help implement, support, and maintain a proactive and stable IT environment as well as provide support to our business units.

The role will work with emerging technologies while enabling success and a competitive advantage for our business.

Essential Functions

• Identify, evaluate, and document cyber security risk
• Assist with solutions and core security projects related to enterprise security and monitoring
• Develop, document, and execute threat hunting research with internal teams to identify adversaries and their behaviors, including new / emerging tactics.
• Conduct research that yields new insights, theories, analyses, data, and prototypes that advance state-of-the-art of controls, detections, monitoring, and investigation / hunting capabilities or leads to improvements to the protection capabilities of our products and services.
• Develop robust detection and mitigation strategies by studying security researchers, attackers, and real incidents. Identify attack-paths from kill-chains for relevance and long-term effectiveness.
• Innovate processes, create strategies, develop automation or tools and work with partner teams to promote efficiency for hunters and investigators.
• Develop, test, document, employ and communicate threat hunting methodologies, findings, and outcomes and aid in development of metrics.

This includes reports with varying levels of leadership.

• Develop actionable information, (e.g., technical indicators, reports, lists, rule sets, signatures, and alerts) that accurately identify malicious behavior while maintaining a low false positive rate.
• Perform analysis on alerts and new indicators of compromise to detect anomalies and prior compromise.
• Identify and collaborate on response to advanced threats, actor techniques, anomalous or suspicious activity, combined with intelligence, to identify potential and active risks.
• Monitor and address incoming notifications, threats, and risks quickly while documenting and solutioning issues.
• Develop and implement new initiatives to simplify, standardize, and optimize intelligence, to reduce response times, and to improve security posture
• Author, update, and maintain SOPs, playbooks, work instructions.
• Assist in threat hunting to identify, classify, prioritize, and report on cyber threats following industry best practices.
• Conduct research on emerging security threats; Provide correlation and trending of cyber incident activity.
• Maintain working knowledge of advanced persistent threats tools, techniques, and procedures.
• Assist in digital investigations for enterprise security incidents,
• Assist in executing processes and activities within the security Incident response lifecycle.
• Investigate data for anomalies in order to identify suspicious behavior,
• Report on evaluations and recommendations for improvements
• Assist in creating a plan to respond to threats,
• Communicate and escalate any incidents with the team.
• Other duties as assigned.

Education & Experience

• Bachelor's Degree with 8 years of relevant security experience; or a minimum of 12 years of relevant security experience
• Minimum 8 years' experience in investigations and / or threat hunting
• 5+ years of experience in cyber threat intelligence, cyber technical analysis, and threat attribution assessment with increasing responsibilities.
• Exposure to enterprise-level threat hunting.

Knowledge, Skills, & Abilities

• Ability to work in a dynamic and demanding environment and make decisions quickly
• Familiarity with classes of vulnerabilities and appropriate remediation of industry-standard classification schemes (CVE, CVSS, CPE)
• In-depth and up-to-date understanding of the threat landscape and the techniques to defend against them - including tactics, techniques, and procedures.
• High ethical standards, personal integrity, discretion, and the ability to professionally handle confidential matters
• Demonstrated knowledge with "threat hunting", i.e. using threat intel to proactively and iteratively investigate potential risks and finding suspicious behavior in the network
• Knowledge of how to handle critical incidents and / or breach response.

Working Environment / Physical Environment

• This position works will work remotely
• This position will require prolonged sitting at a desk

$125,000 (entry-level qualifications) to $160,000 (highly experienced)

The application window is anticipated to close on 60 days from when it is posted or sooner if the position is filled or closed.

ImmunityBio employees are as valuable as the people we serve. We have built a resource of robust benefit offerings to best support the total wellbeing of our team members and their families.

Our competitive total rewards benefits package, for eligible employees, include : Medical, Dental and Vision Plan Options

• Health and Financial Wellness Programs
• Employer Assistance Program (EAP)
• Company Paid and Voluntary Life / AD&D, Short-Term and Long-Term Disability
• Healthcare and Dependent Care Flexible Spending Accounts
• 401(k) Retirement Plan with Company Match
• 529 Education Savings Program
• Voluntary Legal Services, Identity Theft Protection, Pet Insurance and Employee Discounts, Rewards and Perks
• Paid Time Off (PTO) includes : 11 Holidays
• Exempt Employees are eligible for Unlimited PTO
• Non-Exempt Employees are eligible for 10 Vacation Days, 56 Hours of Health Pay, 2 Personal Days and 1 Cultural Day
• We are committed to providing you with the tools and resources you need to optimize your Health and Wellness.

At ImmunityBio, we are an equal opportunity employer dedicated to diversity in the workplace. Our policy is to provide equal employment opportunities to all qualified persons without regard to race, gender, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity and / or expression, or other status protected by law.

ImmunityBio is a mandatory vaccination employer for COVID-19 and its variants. The Company requires that its employees be fully vaccinated as of their start date.

If you require a medical or religious accommodation we will engage in the interactive process with you. Proof of vaccination will be required prior to start.

If we make you an offer and you are not yet vaccinated, we will accommodate a delay in start date. ImmunityBio may also mandate that its employees receive vaccine boosters, and all accommodation laws will be followed.