Senior Detection and Response Engineer

Roblox•San Mateo, CA

23h•$243,290 - $295,250•Hybrid

About The Position

Every day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences– all created by our global community of developers and creators. At Roblox, we’re building the tools and platform that empower our community to bring any experience that they can imagine to life. Our vision is to reimagine the way people come together, from anywhere in the world, and on any device. We’re on a mission to connect a billion people with optimism and civility, and looking for amazing talent to help us get there. A career at Roblox means you’ll be working to shape the future of human interaction, solving unique technical challenges at scale, and helping to create safer, more civil shared experiences for everyone. About the role: As a Senior Security Engineer on the Detection and Response (D&R) team at Roblox, you’ll protect a platform serving a community of hundreds of millions of monthly users alongside the infrastructure that powers it. You’ll design high-fidelity detections, engineer the platforms that power them, and respond alongside the team during incidents. This is a hybrid in-office role in San Mateo.

Requirements

5+ years of experience in Security Engineering: A passion for building security data pipelines and custom detection engineering end to end from ingestion to threat detection and investigation.
You have built production services that are efficient, reliable, scalable using programming languages like Golang or Python. You leveraged infrastructure as code tools like Terraform and query languages like SQL.
Hands on with SIEM, EDR, NDR, and SOAR technologies: You have on-boarded logs in your sleep and built custom detections/automations for complex environments.
Practical experience securing corporate endpoints, cloud environments and on-prem containers with informed opinions on tradeoffs.
You prioritize risk, design compensating controls and drive incidents to mitigate the root cause.

Nice To Haves

Intellectually restless: You relish gathering data to inform decisions with teammates and partners. You embrace new paradigms to tackle complex problems with creativity and speed.
A collaborative builder: You are comfortable diving into other teams' codebases, submitting PRs, and building scalable security solutions on shared infrastructure.
Pragmatic: You balance open-source, commercial tools, and custom in-house builds to find the right fit for our unique security challenges.

Responsibilities

Engineer high-fidelity detections end-to-end with the autonomy to own them from threat modeling to production while keeping false positives low.
Apply the right tool for the job (be it statistical modeling, traditional ML, or LLM agentic workflows) to triage, enrich, and auto-respond to security alerts when it meaningfully improves signal or speed.
Develop customized data processing pipelines and actively contribute to internal software and shared data platforms, collaborating directly with the engineering teams that own them.
Partner across teams to instrument their services, improve log schemas, and influence platform roadmaps.
Participate in an on-call rotation to keep detection pipelines and response tooling healthy, addressing dropped log sources, broken enrichments, or pipeline backpressure.