Senior Detection Engineer

This is a fully remote position, open to applicants in California, +18 more states.

📋 Description

• Develop, refine, document, and sustain detection logic across various log sources, encompassing endpoint, cloud, container, and SaaS products.

• Support cyber forensic investigations utilizing diverse log sources.

• Enhance log ingestion pipelines and telemetry collection to guarantee high-quality, actionable security data while effectively managing volume and costs.

• Create and implement SOAR playbooks and automation workflows to optimize detection triage, enrichment, and response actions.

• Guide junior security analysts and detection engineers in threat hunting methodologies, detection logic development, and investigative techniques.

⛳️ Requirements

• Over 5 years of experience in detection engineering, incident response, or offensive security roles.

• Familiarity with one or more public cloud platforms (AWS, Azure, GCP).

• Profound understanding of attacker TTPs within contemporary zero trust environments, including identity compromise, token theft, and the exploitation of trust boundaries.

• Strong knowledge of macOS internals and the telemetry available for identifying macOS-specific threats.

• Experience in implementing detection-as-code workflows, including version control, peer review processes, automated testing, and CI/CD deployment pipelines.

• Basic proficiency in Python, Golang, or other programming languages.

• Relevant certifications such as GCFA, GCFE, GNFA, GREM, OSCP, GCIA, or similar.

🏝️ Benefits

• Highly competitive compensation and benefits package.

• Flexible work arrangements available.

• Eligibility for a new hire equity grant.

• Annual refresh grants provided.