Lead Security Engineer

Job Overview

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real‑estate information, analytics, and online marketplaces. This role supports the company’s mission to digitize real‑estate by leading incident response, security tooling, and threat hunting.

• Serve as the incident response coordinator and oversee all incident response activities.
• Develop, mature, and lead incident response functions and reporting of findings.
• Lead technical security assessments (network, application, database) for existing and newly acquired businesses or services.
• Facilitate quarterly incident response tabletop exercises and maintain the Incident Response Plan.
• Serve as team expert on MITRE ATT&CK; use knowledge to drive incident response strategy.
• Define and develop platform automations to increase efficiency in responding to observed threats.
• Familiar with at least one scripting language and basic CI/CD practices.
• Coordinate security reviews, monitoring of the production environment, and set up permissions, open ports/services, and network configuration.
• Analyze logs with forensic depth to identify security incidents and train/mentor others.
• Use security tools to audit infrastructure, detect issues, and coordinate remediation.
• Develop and mature threat hunting practices in the enterprise.
• Collaborate with teams to remediate deficiencies and improve network/end‑point security configuration procedures.
• Participate in a 24x7 on‑call rotation.

• Bachelor’s degree from an accredited university or college.
• 8+ years in Information Technology, with 5+ years of cyber‑security experience.
• One or more security certifications (SANS/GIAC, CISSP, CISM, GCIH, CEIH, or equivalent).
• Experience with Windows Server 2012/2016/2019 and Active Directory.
• Strong scripting/programming skills (Perl, Python, Power Shell).
• Track record of commitment to prior employers.

• Excellent oral and written communication skills.
• Experience working on a culturally diverse team and across international time zones.
• Experience with Microsoft security tooling (Defender, Sentinel, EOP, etc.).
• Ability to produce detailed technical documentation.
• Proficiency with PC software applications, e‑mail, and job‑associated applications/systems.
• Good organization skills and the ability to produce quality work within required specifications and timelines.
• Excellent customer service skills.

• Generous compensation and performance‑based incentives.
• Internal training and tuition reimbursement.
• Healthcare coverage: medical, vision, dental, prescription drug, life, legal, and supplementary insurance.
• Virtual and in‑person mental health counseling services.
• Commuter and parking benefits.
• 401(k) retirement plan with matching contributions.
• Employee stock purchase plan.
• Paid time off.
• On‑site fitness center and/or reimbursed fitness center membership (location dependent).
• Access to employee resource groups.
• Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and healthy snacks.

CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug‑free workplace and perform pre‑employment substance abuse testing. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

CoStar is also committed to compliance with all fair employment practices regarding citizenship and immigration status. If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation.