Detection and Response Engineer

Benchling

1d•Remote

About The Position

We are rebuilding biotech for the AI era. When a breakthrough is delayed, the world waits. Getting a molecule from discovery to patients, or a crop from lab to field, involves thousands of slow, manual, disconnected steps. AI has the potential to change this, compressing decades of R&D work into years. But that only happens when clean, structured scientific data and AI are built into how science gets done. Benchling is the AI platform for biotech R&D. Scientists use Benchling to design experiments, capture structured data, and run AI agents and models directly in their workflows. Over 200,000 scientists around the world trust Benchling to power their most important work, from academic labs to Sanofi, Moderna, and more than half of the world's top 50 biopharma. ROLE OVERVIEW As a Detection and Response Engineer at Benchling you’ll be joining a team responsible for building a best-in-class security program from the ground up. Our focus is on providing value to the organization by emphasizing real world security and embracing automation to keep up with the company as we experience hypergrowth. We’re looking for engineers who are excited to apply their expertise to our mission of securing some of society's most sensitive data.

Requirements

5+ years experience in Detection and Response (Detection Engineering, Digital Forensics, Incident Response, and/or Threat Intelligence).
Strong communicator with both words and data - you have experience communicating to a wide variety of stakeholders under varying conditions.
Experience as an incident responder responsible for leading multi-team incidents.
Technical innovation skills (you enjoy finding technical solutions, learning new technology, evangelizing security and privacy).
Ability to move forward major projects in ambiguous situations through influence and not authority.
Practical experience with attacker tactics, techniques, and procedures.
Comfortable with complexity in the short term but can build towards simplicity in the long term.
Experience with cloud environments and automation.
Relevant development experience in at least one scripting language, preferably Python.

Responsibilities

Investigating security events across the organization using your experience and knowledge in multiple security domains (log analysis, digital forensics, or malware analysis).
Creating, deploying and maintaining high signal threat detections based on your understanding of threat actor TTPs.
Architecting a highly scalable incident response process by developing, applying and refining automation for steps of the Incident Response life cycle
Coordinating multi-functional incident response during security incidents, assisting partner teams during non-security incidents
Researching new detection mechanisms for attack vectors and techniques relevant to our space and presenting findings to both internal and external audiences.
Evaluating external tooling, developing new automation and tooling.
Helping to rapidly scale our team. As a member of the security team, you'll be an integral part of how we mature our own tooling, best practices, engineering processes, and hiring.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume