Logo
Xai

Detection & Response Engineer

Xai, San Francisco, California, 94199


About the Role We are seeking a skilled and proactive Detection & Response Engineer to join our security team. In this critical role, you will be responsible for detecting, investigating, and responding to security incidents across our cloud-native and AI-focused infrastructure. You will play a key part in safeguarding our innovative technologies and sensitive data. Ideal Experience Monitor and analyze security alerts and logs to identify potential threats and anomalies Develop, implement, and maintain detection rules and correlation logic in our SIEM platform Conduct thorough investigations of security incidents, performing root cause analysis and impact assessments Lead incident response efforts, coordinating with relevant teams to contain and mitigate threats Create and maintain incident response playbooks and runbooks Perform regular threat hunting activities to proactively identify potential security risks Develop and refine metrics and reporting to track the effectiveness of detection and response capabilities Collaborate with other security teams to improve overall security posture and incident handling processes Stay current with emerging threats, attack techniques, and defensive strategies in the cloud-native and AI domains Requirements Bachelor's degree in Computer Science, Cybersecurity, or a related field 3-5 years of experience in security operations, incident response, or a similar role Strong understanding of cybersecurity principles, attack techniques, and defensive strategies Proficiency in at least one scripting language (e.g., Python, Rust) for automation and tool development Experience with SIEM platforms and log analysis tools Familiarity with cloud environments (e.g., AWS, GCP, Azure) and their security features Knowledge of network protocols, system administration, and common attack vectors Strong analytical and problem-solving skills with attention to detail Excellent communication skills and ability to work effectively under pressure Preferred Qualifications Relevant security certifications (e.g., GCIH, GCIA, SANS) Experience with threat intelligence platforms and their integration into detection processes Familiarity with AI/ML security implications, particularly those outlined in the OWASP LLM Top 10 Knowledge of software supply chain security and SBOM analysis Experience with containerized environments and Kubernetes security Bonus Skills Experience in building custom security tools or integrations to enhance detection and response capabilities Interest in leveraging AI to improve threat detection and automate response processes Contributions to open-source security projects or threat research Experience with digital forensics and malware analysis Annual Salary Range $180,000 - $440,000 USD California Consumer Privacy Act (CCPA) Notice