Remote Security Engineer - Detection & Response

Description:

• You will be an AI-powered Security Engineer responsible for identifying and responding to malicious or suspicious activity across our environment with speed and confidence.
• This role leads the engineering work behind detection capabilities, designing scalable systems to detect threats and trigger automated responses.
• You will integrate AI into detection and response workflows to accelerate rule development, streamline enrichment, and reduce investigation time, ensuring precision and alignment through human validation.
• As a cloud-first SaaS company, we generate large volumes of event data across identity, endpoint, infrastructure, and collaboration systems, necessitating improved detection engineering and automation.
• This is a platform engineering role focused on building and operating a modern detection pipeline integrated with security automation workflows.
• You will use Python, structured data, and widely adopted frameworks for mapping adversary behaviors and response logic to drive faster, more effective security outcomes.
• This role is not a support or triage position but a strategic contributor to our security infrastructure.

Requirements:

• You must have 5+ years in security engineering, detection engineering, or threat-focused automation roles.
• A strong knowledge of the MITRE ATT&CK framework, detection logic, and IOC/IOA patterns is required.
• Familiarity with MITRE D3FEND for defense-in-depth and response playbook design is necessary.
• Hands-on experience designing, deploying, or managing SIEM platforms is essential, with a vendor-neutral mindset preferred.
• Strong Python scripting skills for integrations, enrichment logic, and playbook development are required.
• You should have experience working with structured data formats such as JSON, YAML, logs, and metrics.
• Familiarity with SaaS logging constraints and cloud-native telemetry, preferably AWS, is needed.
• An understanding of event-driven architecture and API-driven integrations is important.
• You must demonstrate the ability to use AI tools to accelerate scripting, generate or translate detection rules, or assist with enrichment workflows, always with human validation for accuracy.
• Comfort in working autonomously and cross-functionally to deliver reliable detection outcomes is necessary.
• Preferred qualifications include experience building or maintaining detection pipelines using Elastic, Panther, or similar platforms, and experience with detection-as-code practices.

Benefits:

• You will receive competitive USD compensation, enjoying a market-leading rate paid in U.S. dollars.
• The position is 100% remote, allowing you to work from anywhere in your home country without the need for relocation.
• Flexible time off is provided, allowing you to recharge on your own terms and when you need it the most.
• Local holiday pay is honored, providing paid time off for your nation’s official holidays.
• Continuous learning opportunities are available, including a free, all-inclusive learning membership for you and your household.
• You will gain exclusive access to cutting-edge AI tools that boost your productivity.
• A feedback-rich, collaborative culture is fostered, with regular training and peer reviews.
• Your expertise will contribute to an innovative platform used by learners around the world, allowing you to make a global impact.