Senior Security Engineer, Detection & Response

Summary

Join HackerOne as a Senior Detection & Response Security Engineer and play a crucial role in bolstering the company's security posture. You will be responsible for designing and implementing cutting-edge detection strategies, automating response workflows, and leading incident response efforts to safeguard HackerOne's systems and data. This role requires a strategic thinker who thrives in a dynamic cloud-based environment and collaborates cross-functionally with various teams to build scalable security solutions. HackerOne offers a flexible work approach, allowing team members to work remotely while maintaining productivity and collaboration. The position is primarily remote, with occasional in-person requirements to support team collaboration and foster stronger connections.

Requirements

• 5+ years of experience in detection and response related security roles
• Experience working with AWS (or similar cloud environment), Linux, OSX, SentinelOne (or other similar endpoint security software)
• Experience working with DataDog (or other similar log analysis and querying software)
• Familiarity with modern programming languages of some kind such as Ruby, Python, Rust, JavaScript, and similar
• Proficient in responding to alerts and incidents within a cloud based SAAS environment
• Adaptable thinker, able to creatively solve old problems in new ways and new problems in old ways
• Strong collaboration and communication skills with other teams to plan a project, align priorities, lead and model the work, document your decisions, and complete the project
• Understands ways to catch wily threat actors
• Possesses the fine art of crafting useful, actionable, high signal alerts
• Proficiency in automating detection and response processes through API calls, webhook creation, etc
• Willingness and ability to participate in the response to critical incidents as needed

Responsibilities

• In your first week, you'll get your bearings, familiarize yourself with our processes, and our organization
• After that, you will learn about our infrastructure and existing security tooling
• Your focus will be on understanding our detection and response capabilities and developing recommendations to enhance them
• You will meet the rest of the distributed security team at HackerOne and learn about our security strategy of focusing on three key things: World class compliance, world class detection and response, and being "customer zero": the experts in using HackerOne's products and services to secure an organization
• You will lead meaningful projects to implement your ideas and demonstratively improve HackerOne's detection and response capabilities by
• Evaluating potential detection techniques and tools and using them to create useful, actionable, high signal alerts
• Developing automation and improving existing tooling and alerting to minimize alert fatigue and maximize effective incident response
• Collaborating will be key as you will work closely with IT, Engineering, Support and other teams across the company
• You will play a vital role in managing security incidents, from assembling the response team to organizing and leading blameless retrospectives
• You'll also help develop clear response processes for various types of incidents and playbooks for various alerts generated by our tools

Preferred Qualifications

• AWS
• Containerization and Orchestration (Docker, Kubernetes, ECS, EKS)

Benefits

• Health (medical, vision, dental), life, and disability insurance*
• Equity stock options
• Retirement plans
• Paid public holidays and unlimited PTO
• Paid maternity and parental leave
• Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act)
• Employee Assistance Program
• Flexible Work Stipend