Detection & Response Engineering - Security Engineer

About The Position

Requirements

• Minimum four years of experience
• Proven ability to deliver impactful projects spanning multiple technical domains and teams
• Extensive experience crafting custom alert logic within industry-standard tooling, like KQL, SQL, etc
• Familiarity with Kubernetes fundamentals and enthusiasm to deepen your expertise.
• Experience collaborating closely with Purple and Red Teams, leveraging findings to enhance detection capabilities.
• Solid understanding of modern TTP frameworks such as MITRE ATT&CK and Cyber Kill Chain.
• Proficiency in at least one query language (e.g., SQL, Splunk Query Language, HiveQL).
• Competency in writing detections in multiple languages (Python, Bash, Go, JavaScript, etc.)
• Strong foundational knowledge of Linux or macOS internals and their relevant event sources (eBPF, Endpoint Security Framework)
• Practical experience applying and contributing to the Incident Response Lifecycle methodology

Nice To Haves

• Deep understanding of Kubernetes-specific detection and security challenges
• Contributions to the open-source security community or experience developing detection tooling
• Experience leveraging advanced analytics or machine learning techniques in detection engineering

Responsibilities

• Developing and implementing advanced threat detection capabilities to proactively identify and mitigate cyber threats
• Crafting precise and efficient custom detection logic tailored to evolving threat landscapes
• Leading and/or participating in real-time security incident response, threat containment, and remediation.
• Conducting proactive threat-hunting exercises to uncover hidden vulnerabilities and anticipate threats
• Collaborating closely with cross-functional teams to enhance security visibility and detection effectiveness
• Continuously researching and staying informed about emerging threats, attack vectors, and detection methodologies
• Participating in strategic security initiatives, contributing your expertise to security architecture and controls
• Engaging in security assessments to uphold our high standards for security and compliance
• Occasionally, "drawing the owl" - figuring out innovative solutions while navigating ambiguous situations

Benefits

• Medical, dental, and vision insurance - 100% paid for by CoreWeave
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement
• Ability to Participate in Employee Stock Purchase Program (ESPP)
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption