Threat Detection Engineer

Summary

Join Datadog's Product Detection Engineering team as a Product Threat Detection Engineer II and contribute to the development of impactful security detection content for our portfolio of security products. You will leverage cloud-native datasets and workload runtime events to detect threats in near real-time, creatively identifying detection coverage across various technologies. Research attacker techniques against cloud-native technologies and other attack surfaces, and share your findings with the community. Apply data-driven insights to generate high-quality security signals for our customers and provide product feedback. Datadog offers a hybrid workplace model to promote work-life harmony. We value our office culture, relationships, collaboration, and creativity.

Requirements

• A previous background in detection engineering, cloud security engineering or other operational security function
• Experience operating in at least one public cloud platform (AWS, GCP, Azure) and other cloud native technologies (Kubernetes, Docker, Terraform)
• Understanding of modern cloud native attacker techniques and are familiar with technical controls to prevent and detect these attacks
• Proficient understanding of Windows and Linux internals and associated telemetry to detect threats at runtime
• Vast experience detecting threats at scale through a wide variety of technologies and datasets using a modern detection engineering approach
• Basic proficiency with Python, Golang or other programming languages
• Experience measuring the quantitative and qualitative effectiveness of security controls to make data-driven decisions

Responsibilities

• Learn everything about detecting threats and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
• Research and ideate the most ideal way to operationalize telemetry end-to-end from our data platforms into our Cloud SIEM and CSM Threats products as detections at scale
• Partner with product management, engineering, security research and customers to develop roadmaps of content for various integrations and other security concerns
• Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
• Evangelize yourself and the Datadog security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field

Benefits

• New hire stock equity (RSUs) and employee stock purchase plan (ESPP)
• Continuous professional development, product training, and career pathing
• Intradepartmental mentor and buddy program for in-house networking
• An inclusive company culture, ability to join our Community Guilds (Datadog employee resource groups)
• Access to Inclusion Talks, our internal panel discussions
• Free, global mental health benefits for employees and dependents age 6+
• Competitive global benefits
• Hybrid workplace