Detection & Response Engineer

Posted:
11/14/2024, 10:07:01 AM

Location(s):
California, United States ⋅ San Francisco, California, United States

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security ⋅ Software Engineering

About the Role

We are seeking a skilled and proactive Detection & Response Engineer to join our security team. In this critical role, you will be responsible for detecting, investigating, and responding to security incidents across our cloud-native and AI-focused infrastructure. You will play a key part in safeguarding our innovative technologies and sensitive data.

Ideal Experience

  • Monitor and analyze security alerts and logs to identify potential threats and anomalies
  • Develop, implement, and maintain detection rules and correlation logic in our SIEM platform
  • Conduct thorough investigations of security incidents, performing root cause analysis and impact assessments
  • Lead incident response efforts, coordinating with relevant teams to contain and mitigate threats
  • Create and maintain incident response playbooks and runbooks
  • Perform regular threat hunting activities to proactively identify potential security risks
  • Develop and refine metrics and reporting to track the effectiveness of detection and response capabilities
  • Collaborate with other security teams to improve overall security posture and incident handling processes
  • Stay current with emerging threats, attack techniques, and defensive strategies in the cloud-native and AI domains

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, or a related field
  • 3-5 years of experience in security operations, incident response, or a similar role
  • Strong understanding of cybersecurity principles, attack techniques, and defensive strategies
  • Proficiency in at least one scripting language (e.g., Python, Rust) for automation and tool development
  • Experience with SIEM platforms and log analysis tools
  • Familiarity with cloud environments (e.g., AWS, GCP, Azure) and their security features
  • Knowledge of network protocols, system administration, and common attack vectors
  • Strong analytical and problem-solving skills with attention to detail
  • Excellent communication skills and ability to work effectively under pressure

Preferred Qualifications

  • Relevant security certifications (e.g., GCIH, GCIA, SANS)
  • Experience with threat intelligence platforms and their integration into detection processes
  • Familiarity with AI/ML security implications, particularly those outlined in the OWASP LLM Top 10
  • Knowledge of software supply chain security and SBOM analysis
  • Experience with containerized environments and Kubernetes security

Bonus Skills

  • Experience in building custom security tools or integrations to enhance detection and response capabilities
  • Interest in leveraging AI to improve threat detection and automate response processes
  • Contributions to open-source security projects or threat research
  • Experience with digital forensics and malware analysis

Annual Salary Range

$180,000 - $440,000 USD