Senior Security Engineer, Detection & Response

Summary

Join HackerOne as a Senior Detection & Response Security Engineer and play a critical role in strengthening our security posture. You will design and implement cutting-edge detection strategies, automate response workflows, and lead incident response efforts. This role requires a strategic thinker who thrives in a dynamic cloud-based environment and involves collaboration with various teams. The position is primarily remote, with occasional in-person requirements in London, UK; Austin, TX; or Washington, DC. You will evaluate detection techniques, develop automation, manage security incidents, and contribute to improving our detection and response capabilities. HackerOne offers a flexible work approach and a comprehensive benefits package.

Requirements

• 5+ years of experience in detection and response related security roles
• Experience working with AWS (or similar cloud environment), Linux, OSX, SentinelOne (or other similar endpoint security software)
• Experience working with DataDog (or other similar log analysis and querying software)
• Familiarity with modern programming languages of some kind such as Ruby, Python, Rust, JavaScript, and similar
• Proficient in responding to alerts and incidents within a cloud based SAAS environment
• Adaptable thinker, able to creatively solve old problems in new ways and new problems in old ways
• Strong collaboration and communication skills with other teams to plan a project, align priorities, lead and model the work, document your decisions, and complete the project
• Understands ways to catch wily threat actors
• Possesses the fine art of crafting useful, actionable, high signal alerts
• Proficiency in automating detection and response processes through API calls, webhook creation, etc
• Willingness and ability to participate in the response to critical incidents as needed

Responsibilities

• Design and implement cutting-edge detection strategies
• Automate response workflows
• Lead incident response efforts to safeguard our systems and data
• Collaborate cross-functionally with Engineering, IT, Support, and other teams to build scalable security solutions that mitigate threats and drive operational excellence
• Evaluate potential detection techniques and tools and use them to create useful, actionable, high signal alerts
• Develop automation and improve existing tooling and alerting to minimize alert fatigue and maximize effective incident response
• Collaborate with IT, Engineering, Support and other teams across the company
• Play a vital role in managing security incidents, from assembling the response team to organizing and leading blameless retrospectives
• Help develop clear response processes for various types of incidents and playbooks for various alerts generated by our tools

Preferred Qualifications

• AWS
• Containerization and Orchestration (Docker, Kubernetes, ECS, EKS)

Benefits

• Health (medical, vision, dental), life, and disability insurance
• Equity stock options
• Retirement plans
• Paid public holidays and unlimited PTO
• Paid maternity and parental leave
• Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act)
• Employee Assistance Program
• Flexible Work Stipend