Senior Security Engineer - Detection and Response

WeightWatchers is a global digital health company. 

WeightWatchers is a global digital health company and the world’s #1 doctor-recommended, clinically studied behavioral weight health program. For sixty years, we have led the industry by blending science and community to help millions of people build sustainable healthy habits.

As the science of weight health rapidly evolves, so does WeightWatchers. We are redefining the category by developing new clinical pathways for GLP-1 medication access, creating specialized behavioral programs for members on weight-loss medications, and integrating medical care with our proven habit-change framework. By combining these clinical breakthroughs with our digital-first community, we are uniquely positioned to lead the future of weight health care.

Who We Are 

Engineering: At WeightWatchers, our Engineering Team drives transformative change by leveraging technology to redefine how millions approach weight health and wellness. The team builds digital solutions that establish personalized connections and foster inclusive virtual communities, empowering members to adopt healthier habits and achieve lasting lifestyle changes. From pioneering a comprehensive telehealth platform, optimizing medication access, diving headfirst into exciting AI integrations we lead with data-driven innovations that revolutionize healthcare outcomes. Our culture thrives on urgency, collaboration, and a passion for impactful work that directly improves the lives of our members.

What You Will Do

As our Senior Security Engineer - Detection and Response, you will be working alongside an existing team of experienced security engineers and partnering closely with technologists across the company to help build the future of digital health security and protect our patients! We serve our patients from end to end, and security works the same way, all the way from the deepest infrastructure to the patient experience, we want our patients to be safer by being with WW. 

What you get to do every day

• Build and mature a detection and response program
• Detect and respond to security incidents and participate in an incident on-call rotation
• Develop innovative ways to detect security incidents.
• Design and build the security for the future of our infrastructure.
• Partner with the infrastructure team, engineering team, compliance team and within security teams to maintain and further improve our cloud security posture.
• Create solutions and processes to identify, resolve and mitigate security vulnerabilities and risks.
• Research threats and attack vectors that impact WW applications and infrastructure.
• Devise and bolster defense-in-depth through secure-by-default frameworks, architectures and processes.
• Mentor and share security standards and processes with all parts of the organization.

Who you are

• Expertise responding to complex incidents across endpoint, network, and cloud.
• Capable of understanding an unfamiliar system enough to successfully respond to an incident involving the system.
• Expertise in detection engineering.
• Experience with SIEM, EDR, and CSPM tools.
• Deep understanding of the threat landscape.
• Experience with assessing risks.
• Experience in cloud security, especially for AWS, anything to do with IAM, secure configuration of services, AWS native security services like AWS Cloudtrail, SCP’s, AWS Org, Config etc.
• Ability to understand the whole solution, not just the technology.
• Focus on the end to end lifecycle of solving a problem and solutioning for it and not just implementing a security technology. Have a well-rounded view for problem solving.
• Deep care for the patient and your fellow employees experience as you surpass security challenges.
• Hunger to drive decision making, collaboration and to have deeper opinions on security design.
• You can review different design choices and can understand/discuss pros and cons for each.
• Ability to code to automate tedious tasks.
• Experience with Infrastructure as Code. We use terraform!
• Strong collaboration skills with the wider security team and engineering at WW

At WeightWatchers, our mission is to build a worldwide community connected by healthy habits. If that resonates with you, then we would love to talk. WeightWatchers values developing community within our employee population as well.  We have a hybrid work environment to allow our employees to find the right work-life balance. 

It is our priority to cultivate a diverse and inclusive workplace. We are committed as individuals, as an organization, and as fellow humans, to advocate for and support our employees, our members, and our communities. We are proud to be an equal opportunity employer and we do not discriminate on the basis of sex, race, color, creed, national origin, marital status, age, religion, sexual orientation, gender identity, gender expression, veteran status, or disability.

By agreeing to participate in our process, you agree that any information we collect is subject to our Privacy Policy.

RECRUITMENT SECURITY & FRAUD PREVENTION

At WeightWatchers, we prioritize the security of our candidates. To ensure you are communicating with a legitimate representative of our team, please keep the following security standards in mind:

• Verified Email Domain: All official correspondence from our recruiting team will originate from an @ww.com email address. 
• Live Engagement: Our hiring process requires live interaction. We do not conduct interviews or extend employment offers solely through text message, chat apps, or automated email-only exchanges.
• Financial Integrity: WeightWatchers will never ask for any form of payment from a candidate. We will never send you a check with instructions to purchase equipment or "start-up kits" on our behalf.
• Secure Data Collection: Sensitive personal information (such as banking or identity tax info) is only requested through our official, secure onboarding portal after a formal offer has been extended, never during the interview phase.

Stay Vigilant: If you are contacted by someone claiming to represent WeightWatchers and the process deviates from these standards, please do not share any personal information. You can verify any open position by visiting our official careers page at https://job-boards.greenhouse.io/ww