Remote Security Engineer - Detection & Response

Description:

• You will be an AI-powered Security Engineer responsible for identifying and responding to malicious or suspicious activity across the environment with speed and confidence.
• This role leads the engineering work behind detection capabilities, designing scalable systems to detect threats and trigger automated responses.
• You will integrate AI into detection and response workflows to accelerate rule development, streamline enrichment, and reduce investigation time, ensuring precision and alignment through human validation.
• The position focuses on building and operating a modern detection pipeline integrated with security automation workflows.
• You will utilize Python, structured data, and widely adopted frameworks for mapping adversary behaviors and response logic to drive faster, more effective security outcomes.
• This is a strategic contributor role, not a support or triage position, within a cloud-first SaaS company that generates large volumes of event data across various systems.

Requirements:

• You must have 5+ years of experience in security engineering, detection engineering, or threat-focused automation roles.
• A strong knowledge of the MITRE ATT&CK framework, detection logic, and IOC/IOA patterns is required.
• Familiarity with MITRE D3FEND for defense-in-depth and response playbook design is necessary.
• Hands-on experience designing, deploying, or managing SIEM platforms is essential, with a vendor-neutral mindset preferred.
• Strong Python scripting skills for integrations, enrichment logic, and playbook development are required.
• You should have experience working with structured data formats such as JSON, YAML, logs, and metrics.
• Familiarity with SaaS logging constraints and cloud-native telemetry, preferably AWS, is needed.
• An understanding of event-driven architecture and API-driven integrations is important.
• You must demonstrate the ability to use AI tools to accelerate scripting, generate or translate detection rules, or assist with enrichment workflows, with human validation for accuracy.
• Comfort in working autonomously and cross-functionally to deliver reliable detection outcomes is required.
• Preferred qualifications include experience building or maintaining detection pipelines using Elastic, Panther, or similar platforms, and experience with detection-as-code practices.

Benefits:

• You will receive competitive USD compensation, enjoying a market-leading rate paid in U.S. dollars.
• The position is 100% remote, allowing you to work from anywhere in your home country without the need for relocation.
• Flexible time off is offered, allowing you to recharge on your own terms when needed.
• Local holiday pay is provided, honoring your nation’s official holidays with paid time off.
• Continuous learning opportunities include a free, all-inclusive learning membership for you and your household, which includes 1-on-1 tutoring hours and unlimited on-demand classes.
• You will gain exclusive access to cutting-edge AI tools that enhance your productivity.
• A feedback-rich, collaborative culture is fostered, with regular training and peer reviews.
• Your expertise will contribute to an innovative platform used by learners globally, allowing you to make a significant impact.