Detection & Response Security Engineer

Harvey•San Francisco, CA

2d•$188,000 - $282,000

About The Position

Some of the world's largest companies and their law firms use Harvey’s AI capabilities to deliver world-class client services at unprecedented scale and efficiency. Harvey allows high-performing professionals to gain deep domain knowledge faster, understand the big picture, and tackle more complex challenges in less time. Our customers depend on us to deliver a secure, trustworthy, and compliant platform. Earning the trust of our customers is a business enabler and we value it more than anything else. We are looking for an offensive security minded blue teamer to help us proactively identify and mitigate all threats against Harvey. Your offensive security expertise will be key in prioritizing the right defenses, modeling threats against our infrastructure, and chasing down leads. You will have the opportunity to build your Software Engineering and System Design skills as you’re working on our state of the art agentic threat detection platform built on ClickHouse. As an early member of our Security Detection and Response team, you will play a key role in shaping the foundation of our Detection and Response program. We are a small but effective team and have a high bar for our work. Our security program at Harvey is driven by our collective offensive security experience: Breaking into systems at other companies (in white-hat capacities), responding to real security incidents, and learning from other companies’ data breaches. We conduct regular pentests and red team exercises with external security firms. At the same time, we are all software engineers, contributing code daily, and approaching security topics with an engineering-first approach.

Requirements

Demonstrated ability to find weaknesses (e.g. privilege escalation) in real-world corporate networks, cloud environments, or applications
Hands-on experience responding to security incidents
Strong understanding of computer networks, operating systems, and cryptographic protocols
4+ years of experience in Security, Software Engineering, Site Reliability Engineering, or related disciplines

Nice To Haves

Experience working at a small company, smaller independent division of larger company, or a hyper-growth startup
Experience with ClickHouse or similar data warehouses
Red team experience
Experience in incident commander role, managing security incidents or other disasters

Responsibilities

Build strong relationships with key employees across the organization
Use your offensive security expertise to develop plausible threat scenarios and identify opportunities for detection
Assess logs for gaps and implement additional logging as needed
Build out sophisticated data pipelines to handle increasing volumes of data and enrich our observability
Lead incident response, as needed
Develop detection rules and a process for keeping them effective in collaboration with our other D&R Engineers
Participate in table-top and redteam exercises to evaluate efficacy

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume