Senior Detection and Response Engineer

About The Position

Requirements

• Programming experience in one or more general purpose languages (Python, SQL, Go, Rust, etc)
• Experience conducting data analysis in large-scale data lake environments
• Experience deploying infrastructure as code (Terraform, CDK, CloudFormation, etc)
• Experience working in a traditional software development lifecycle (i.e. Github, CI/CD, unit testing)
• Extensive experience utilizing AWS / Azure security controls and services
• Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure
• Strong knowledge of attacker tactics, techniques, and procedures (TTPs)
• Strong communication skills and experience collaborating with internal and external stakeholders
• Must be able to obtain and hold a U.S. Top Secret security clearance

Nice To Haves

• Experience deploying infrastructure using Kubernetes (EKS) and/or Docker containers (ECS)
• Experience conducting analysis / incident response in manufacturing and IT/OT environments
• Experience proactively threat hunting using threat intelligence to identify potential risks and weaknesses in telemetry
• Experience building custom security tooling to augment capabilities not found off-the-shelf
• Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources

Responsibilities

• Provide technical leadership, vision, and strategy for the advancement of the Detection and Response capability at Anduril
• Collaborate with product security and engineering teams to architect and implement detection and response frameworks for Anduril’s products, assets, and other custom applications
• Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles
• Lead threat modeling scenarios with cross-functional partners to understand weaknesses across OT, Cloud, Network, Endpoints, and other key worlds incorporating findings into security controls and/or detection signatures
• Lead large-scale baselines of data with a heavy focus on manufacturing and IT/OT concepts, collaborating with Connected Factory, Security Engineering, and product teams to emit signals to incorporate into detections, new telemetry ingestion, and/or security controls
• Contribute directly to the development and advancement of our detection-as-code, data engineering, automation, and infrastructure capabilities
• Work cross-collaboratively with different teams to mature the detection and response of threat actors in key worlds, developing data baselines, automation, and engineering capabilities to scale this capability across the business
• Mentor engineers and provide technical guidance to security team members, elevating detection engineering practices across the organization

Benefits

• Healthcare Benefits
• US Roles: Comprehensive medical, dental, and vision plans at little to no cost to you.
• UK & AUS Roles: We cover full cost of medical insurance premiums for you and your dependents.
• IE Roles: We offer an annual contribution toward your private health insurance for you and your dependents.
• Additional Benefits
• Income Protection: Anduril covers life and disability insurance for all employees.
• Generous time off: Highly competitive PTO plans with a holiday hiatus in December. Caregiver & Wellness Leave is available to care for family members, bond with a new baby, or address your own medical needs.
• Family Planning & Parenting Support: Coverage for fertility treatments (e.g., IVF, preservation), adoption, and gestational carriers, along with resources to support you and your partner from planning to parenting.
• Mental Health Resources: Access free mental health resources 24/7, including therapy and life coaching. Additional work-life services, such as legal and financial support, are also available.
• Professional Development: Annual reimbursement for professional development
• Commuter Benefits: Company-funded commuter benefits based on your region.
• Relocation Assistance: Available depending on role eligibility.
• Retirement Savings Plan
• US Roles: Traditional 401(k), Roth, and after-tax (mega backdoor Roth) options.
• UK & IE Roles: Pension plan with employer match.
• AUS Roles: Superannuation plan.