RemoteLeaf Logo
Log in Sign up

Senior Detection Engineer

3 weeks, 3 days ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS LLM Python
Apply Now
ActiveCampaign

ActiveCampaign

ActiveCampaign is a web-based software company that offers Email Marketing, Automation, and CRM services. Their Customer Experience Automation platform helps over 185,000 businesses build meaningful connections with their customers through personalized...

Internet Software & Services
251-1K
Founded 2003
$360M raised
View All Jobs 8

Description

  • Design and deploy detection logic across the technology stack using detection-as-code principles.
  • Build automated response workflows to enrich, triage, and remediate security alerts.
  • Investigate complex security signals, including novel attack patterns and phishing campaigns.
  • Collaborate with DevOps and Security Engineering teams to update detections as infrastructure changes.
  • Use AI and LLMs to accelerate threat hunting, generate detection hypotheses, and automate investigative work.
  • Lead post-incident reviews and translate findings into preventative architectural improvements.
  • Prototype and test emerging detection capabilities and data sources.
  • Participate in an on-call rotation to help defend critical systems.

Requirements

  • 5+ years of hands-on experience in detection engineering, incident response, or security operations in high-growth technology environments.
  • Advanced Python programming proficiency with experience building production-quality security automations and custom integrations.
  • Deep expertise in AWS cloud security, including IAM, VPC, CloudTrail, and Lambda attack vectors.
  • Mastery of detection logic in at least two major languages such as YARA-L, Sigma, KQL, or SPL.
  • Experience building SOAR workflows or equivalent automation platforms that reduce operational overhead at scale.
  • Exceptional communication skills with the ability to translate complex security risks into actionable insights.
  • Experience using AI/LLMs for threat analysis, investigation automation, and improving security work velocity.
  • A self-directed, engineering-first mindset, ideally with a background in SRE, DevOps, or platform engineering.
  • Experience contributing to open-source security projects is preferred.

Benefits

  • Base salary of $126,000 to $154,000 per year, plus potential bonus and equity.
  • Fully covered HDHP, telehealth access, and a free Calm subscription.
  • Open PTO for flexible time off and work-life balance.
  • LinkedIn Learning access, professional development programs, and career growth opportunities.
  • Generous 401(k) matching with immediate vesting.
  • Quarterly perks, including commuter and lunch benefits for hub-based employees or a stipend for remote workers.
  • Four-week paid sabbatical with a bonus after five years.
  • Remote work arrangement in the United States.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Anduril Industries

Senior Detection and Response Engineer

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Senior Detection and Response Engineer to build and operate defensive security controls that protect the infrastructure supporting its defense technology products.

United States Full-time Senior Security Engineer
$166k-$220k
AWS Azure CI/CD CloudFormation Docker GitHub Go Kubernetes Network Security Python Rust SQL Terraform
1 hour, 11 minutes ago
Unlimited Technology

Traveling Security Technician

Unlimited Technology 51-250 Professional Services

Unlimited Technology is hiring a Traveling Security Technician to install, service, test, and inspect access control and IP camera systems while traveling from Pennsylvania to Maine.

United States Full-time Junior Security Engineer
$50k-$100k
2 hours, 20 minutes ago
Block

Security Engineer, Detection & Response - Monitoring & Triage

Block 10K-50K Capital Markets

Block is hiring a Detection and Response Team (DART) security engineer to lead monitoring, triage, and incident response across its endpoints, cloud, identity, SaaS, and product environments.

Australia Full-time Senior Security Engineer
AWS DNS Kubernetes Linux macOS Network Security SQL
4 hours, 36 minutes ago
CloudLinux

Kernel Developer (fully remote, LATAM)

CloudLinux 51-250 IT Services

CloudLinux’s KernelCare team is hiring an experienced Kernel Developer to maintain and enhance Linux kernel live-patching services that deliver security fixes and features for customers worldwide.

Mexico Argentina Brazil Full-time Senior Security Engineer Software Engineer
Agile Bash C Cybersecurity Git Jenkins Linux Python Shell Scripting
9 hours, 11 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers