Job Description
Role Overview:
This is a hybrid position in San Francisco, CA.
We cannot sponsor or use 3rd parties for this hire.
As a Staff Detection and Response Engineer , you will play a critical role in building and improving security detection, response, and threat-hunting capabilities. You will lead efforts in designing, implementing, and optimizing security monitoring systems, leveraging automation to enhance response workflows. Working closely with security, engineering, and operations teams, you will drive proactive security measures to protect our products, infrastructure, and customers.
Key Responsibilities:
Design, implement, and optimize threat detection use cases across SIEM, EDR, and cloud environments.
Develop advanced detection logic to identify and mitigate threats across diverse attack vectors.
Lead investigations into security incidents, performing deep forensic analysis and root cause identification.
Automate and improve response processes using SOAR platforms, scripting, and custom tooling.
Conduct proactive threat hunting using telemetry data, behavioral analytics, and intelligence feeds.
Collaborate with engineering teams to enhance security observability and logging capabilities.
Stay ahead of emerging threats and ensure continuous improvement of security detection strategies.
Mentor junior engineers and help drive security best practices across the organization.
Qualifications:
~7+ years of experience in security operations, incident response, or threat detection.
~ Expertise in SIEM platforms (e.g., Splunk, Elastic, Chronicle, Sentinel) and EDR solutions.
~ Strong proficiency in log analysis, forensic investigation, and threat intelligence.
~ Experience with cloud security (AWS, GCP, Azure) and containerized environments.
~ Proficiency in scripting (Python, PowerShell, or Bash) for automation.
~ Familiarity with attack techniques (MITRE ATT&CK), TTP detection, and anomaly detection.
~ Experience in building and optimizing SOAR playbooks and automation workflows.
~ Excellent problem-solving skills and ability to work independently in high-pressure situations.
Job Tags
Similar Jobs
Crime Scene Resources, Inc
...function of an employee in this class is to assist law enforcement with enforcing criminal laws related to computer crime through forensic collection, recovery, processing, preservation, analysis, storage, maintenance, and/or presentation of digital evidence. The Forensic...
Skyrocket Ventures
...Sr. Full Stack Software Engineer - Leading Blockchain Investment Firm Location: New York, NY (Midtown Manhattan area). You can work from home up to 2x/week. The company is a leading blockchain venture capital firm that has invested in numerous successful companies...
SnapDragon Associates, LLC
...to take ownership of their roles and have opportunities to contribute meaningfully and drive company growth. The Role The Controller will play a crucial leadership role, overseeing financial operations to ensure the companys fiscal health and compliance. This...
TechStar Group
Position: Automotive Designer Location: San Diego, CA Duration: 6-12 Contract Essential Job Functions: (Include but are not limited to) Responsible for the two-dimensional representation and development of future automotive exterior designs Develop new and...
Compunnel Inc.
...Start Date: 4/14/2025 Job Description: The Senior Software Quality Engineer will be part of a team executing NextGen Architecture of Tomorrow dynamic... ...The role requires the Senior SQE to be responsible for testing for multiple scrum teams and participate in end-to-end...