United States Remote

Full time

Software Engineering / Software Developer

Sep 16

What you’ll do:
  • Use your background in application, network, and cloud security to act as subject matter expert in incident response
  • Identify, analyze, and respond to malicious behaviors from a variety of sources and create action plans to mitigate similar incidents in the future
  • Develop automation to improve detection and response time and reduce the likelihood and impact of future incidents
  • Collaborate with Product, Infrastructure, and Safety teams to identify new alert sources and detections as it pertains to new product development.
  • Support threat intelligence, threat hunting, intrusion detection, and penetration testing efforts.
  • Lead and participate in architecting and developing well-engineered and performant detective tooling and automation.
What you have:
  • 3+ years of experience working in a Detection and Response capacity either as a senior individual contributor or Lead.
  • 3+ years of experience programming in at least one general purpose programming language (e.g. Python, Rust, Go).
  • Experience contributing code to a fast-moving codebase and deploying artifacts to production
  • Practical experience securing, monitoring, log analysis and conducting investigations in cloud-based environments (we use Google Cloud).
  • Knowledge of malware and exploit tools, attacker methodologies, techniques, and procedures for infiltration and persistence.
  • Experience in detection building from large datasets to automate Incident detection and response processes.
  • Experience “threat hunting,” i.e. using threat intel to proactively and iteratively investigate potential risks and finding suspicious behavior in the environment.
  • Experience building and iterating on observability of large-scale distributed systems.
  • Experience with container orchestration technologies (we use Kubernetes).
  • Experience with serverless technologies (e.g. Cloudflare Workers, Google Cloud Functions)
Bonus Points:
  • Experience with detection and response in BeyondCorp / Zero-trust network environments
  • Hands on experience with Google Cloud
  • Hands on experience with Cloudflare
  • Hands on experience with Panther SIEM

Apply for this position Back to job

You must be logged in to to apply to this job.


Your application has been successfully submitted.

Please fix the errors below and resubmit.

Something went wrong. Please try again later or contact us.

Personal Information


View resume