RemoteLeaf Logo
Log in Sign up

Senior Detection and Response Engineer

38 minutes ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS Azure CI/CD CloudFormation Docker GitHub Go Kubernetes Network Security Python Rust SQL Terraform
Apply Now
Anduril Industries

Anduril Industries

Anduril Industries is an American defense technology firm that specializes in developing advanced autonomous systems for integrated awareness and security across land, sea, and air, utilizing its proprietary Lattice platform to enhance intelligence, su...

Aerospace & Defense
1K-5K
Founded 2017
$2200M raised
View All Jobs 584

Description

  • Collaborate with Counter Intelligence, Insider Threat, SecOps, and other stakeholders to develop detection and response frameworks.
  • Build and optimize detection signatures and response automation using detection-as-code principles.
  • Support internal tooling that delivers detections to partner teams in real time, including API integrations, audit-trail instrumentation, and data-source health monitoring.
  • Lead threat modeling scenarios across OT, cloud, network, endpoints, and other environments and incorporate findings into security controls and detections.
  • Lead large-scale data baselining efforts and collaborate across teams to generate signals, ingest telemetry, and improve security controls.
  • Design and tune User and Entity Behavior Analytics (UEBA) capabilities, including baselining, anomaly detection, and risk scoring.
  • Contribute to detection-as-code, data engineering, automation, and infrastructure initiatives.
  • Work cross-functionally to mature detection and response capabilities against threat actors across the business.
  • Develop key signals and capabilities to identify suspicious or adversarial activity.

Requirements

  • Experience programming in one or more general-purpose languages such as Python, Go, Rust, or SQL.
  • Experience conducting data analysis in large-scale data lake environments.
  • Experience deploying infrastructure as code using Terraform, CDK, CloudFormation, or similar tools.
  • Experience working in a traditional software development lifecycle with GitHub, CI/CD, and unit testing.
  • Extensive experience using AWS and/or Azure security controls and services.
  • Broad practical security knowledge across endpoint, network, identity, application, and cloud infrastructure.
  • Deep understanding of adversarial tradecraft, with emphasis on counterintelligence and insider threat tactics, techniques, and procedures (TTPs).
  • Strong written and verbal communication skills with experience collaborating with internal and external stakeholders.
  • Ability to obtain and hold a U.S. Top Secret security clearance.
  • Preferred: Experience working directly with counterintelligence, insider threat, or special investigations teams in a cleared environment.
  • Preferred: Experience deploying infrastructure using Kubernetes (EKS) and/or Docker containers (ECS).
  • Preferred: Experience proactively threat hunting using threat and counterintelligence signals.

Benefits

  • US salary range of $166,000 to $220,000 USD.
  • Highly competitive equity grants are included in the majority of full-time offers.
  • Comprehensive, competitive benefits package available at little to no cost to employees.
  • Support for health and recovery as part of the employee benefits package.
  • Candidate privacy protections and pre-employment screening practices designed to protect technology and personal information.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Dropbox

Senior Infrastructure Software Engineer, Identity & Auth Engineering

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a software engineer to re-architect its Identity platform and services for a future as a multi-product company, with work focused on scaling foundational systems across the organization.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$141k-$191k
Go OAuth OpenID Connect Python SAML
24 minutes ago
INflow Federal

DevSecOps Engineer

INflow Federal 51-250 Aerospace & Defense

INflow Federal is seeking a fully remote DevSecOps Engineer to support an enterprise case management solution for Department of Defense mission partners by securing and automating cloud-based CI/CD and infrastructure operations in AWS GovCloud.

United States Full-time Senior DevOps Engineer Security Engineer
Agile AWS Bash CI/CD CloudFormation Docker ELK Stack Git GitLab CI Helm Jenkins Kubernetes PowerShell Prometheus Python Terraform
56 minutes ago
SenseOn

Security Engineer - South Africa

SenseOn 51-250 Professional Services

SenseOn is seeking a Security Engineer to own customer deployments, integrations, and technical success for its security platform across real-world environments.

South Africa Full-time Mid Level Security Engineer Software Engineer
AWS Azure Bash GCP GitHub Go JavaScript Python REST API SIEM
1 hour, 9 minutes ago
Proper

IT Specialist - Barranquilla Remote

Proper 251-1K Diversified Financial Services

Proper AI is hiring a remote IT Specialist in Barranquilla to support employee onboarding, ongoing IT operations, and device and software administration for a distributed team.

Colombia Full-time Junior Security Engineer Technical Support Engineer
Linux macOS PowerShell
1 hour, 9 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers