Remote Jobs
Detection & Response Engineer
Remote Jobs, San Francisco, California, United States, 94199
About the Role
We are seeking a skilled and proactive Detection & Response Engineer to join our security team. In this critical role, you will be responsible for detecting, investigating, and responding to security incidents across our cloud-native and AI-focused infrastructure. You will play a key part in safeguarding our innovative technologies and sensitive data.
Ideal Experience
Monitor and analyze security alerts and logs to identify potential threats and anomalies Develop, implement, and maintain detection rules and correlation logic in our SIEM platform Conduct thorough investigations of security incidents, performing root cause analysis and impact assessments Lead incident response efforts, coordinating with relevant teams to contain and mitigate threats Create and maintain incident response playbooks and runbooks Perform regular threat hunting activities to proactively identify potential security risks Develop and refine metrics and reporting to track the effectiveness of detection and response capabilities Collaborate with other security teams to improve overall security posture and incident handling processes Stay current with emerging threats, attack techniques, and defensive strategies in the cloud-native and AI domains
Requirements
Bachelor's degree in Computer Science, Cybersecurity, or a related field 3-5 years of experience in security operations, incident response, or a similar role Strong understanding of cybersecurity principles, attack techniques, and defensive strategies Proficiency in at least one scripting language (e.g., Python, Rust) for automation and tool development Experience with SIEM platforms and log analysis tools Familiarity with cloud environments (e.g., AWS, GCP, Azure) and their security features Knowledge of network protocols, system administration, and common attack vectors Strong analytical and problem-solving skills with attention to detail Excellent communication skills and ability to work effectively under pressure
Preferred Qualifications
Relevant security certifications (e.g., GCIH, GCIA, SANS) Experience with threat intelligence platforms and their integration into detection processes Familiarity with AI/ML security implications, particularly those outlined in the OWASP LLM Top 10 Knowledge of software supply chain security and SBOM analysis Experience with containerized environments and Kubernetes security
Bonus Skills
Experience in building custom security tools or integrations to enhance detection and response capabilities Interest in leveraging AI to improve threat detection and automate response processes Contributions to open-source security projects or threat research Experience with digital forensics and malware analysis
Annual Salary Range
$180,000 - $440,000 USD
Benefits
401(k) Distributed team Async Vision insurance Dental insurance Medical insurance Unlimited vacation Paid time off 4 day workweek 401k matching Company retreats Coworking budget Learning budget Free gym membership Mental wellness budget Home office budget Pay in crypto Pseudonymous Profit sharing Equity compensation No whiteboard interview No monitoring system No politics at work We hire old (and young)
Location
San Francisco Bay Area, California, United States #J-18808-Ljbffr
We are seeking a skilled and proactive Detection & Response Engineer to join our security team. In this critical role, you will be responsible for detecting, investigating, and responding to security incidents across our cloud-native and AI-focused infrastructure. You will play a key part in safeguarding our innovative technologies and sensitive data.
Ideal Experience
Monitor and analyze security alerts and logs to identify potential threats and anomalies Develop, implement, and maintain detection rules and correlation logic in our SIEM platform Conduct thorough investigations of security incidents, performing root cause analysis and impact assessments Lead incident response efforts, coordinating with relevant teams to contain and mitigate threats Create and maintain incident response playbooks and runbooks Perform regular threat hunting activities to proactively identify potential security risks Develop and refine metrics and reporting to track the effectiveness of detection and response capabilities Collaborate with other security teams to improve overall security posture and incident handling processes Stay current with emerging threats, attack techniques, and defensive strategies in the cloud-native and AI domains
Requirements
Bachelor's degree in Computer Science, Cybersecurity, or a related field 3-5 years of experience in security operations, incident response, or a similar role Strong understanding of cybersecurity principles, attack techniques, and defensive strategies Proficiency in at least one scripting language (e.g., Python, Rust) for automation and tool development Experience with SIEM platforms and log analysis tools Familiarity with cloud environments (e.g., AWS, GCP, Azure) and their security features Knowledge of network protocols, system administration, and common attack vectors Strong analytical and problem-solving skills with attention to detail Excellent communication skills and ability to work effectively under pressure
Preferred Qualifications
Relevant security certifications (e.g., GCIH, GCIA, SANS) Experience with threat intelligence platforms and their integration into detection processes Familiarity with AI/ML security implications, particularly those outlined in the OWASP LLM Top 10 Knowledge of software supply chain security and SBOM analysis Experience with containerized environments and Kubernetes security
Bonus Skills
Experience in building custom security tools or integrations to enhance detection and response capabilities Interest in leveraging AI to improve threat detection and automate response processes Contributions to open-source security projects or threat research Experience with digital forensics and malware analysis
Annual Salary Range
$180,000 - $440,000 USD
Benefits
401(k) Distributed team Async Vision insurance Dental insurance Medical insurance Unlimited vacation Paid time off 4 day workweek 401k matching Company retreats Coworking budget Learning budget Free gym membership Mental wellness budget Home office budget Pay in crypto Pseudonymous Profit sharing Equity compensation No whiteboard interview No monitoring system No politics at work We hire old (and young)
Location
San Francisco Bay Area, California, United States #J-18808-Ljbffr