Senior Security Engineer, Security Incident Response Team (SIRT)
About The Position
The Security Incident Response Team (SIRT) plays a vital role in keeping Datadog safe from cybersecurity threats, defending the organization against threat actors, and maintaining the trust of our customers by ensuring their data remains protected. In this role, you will work closely with teams across Datadog to identify, triage, and respond to a wide range of threats, ensuring that we can contain any incidents as quickly as possible. You will also contribute to the tools and systems that make us more effective in our mission, and help ensure we have cross-functional learning from incidents to improve our defensive posture going forward. At Datadog, we place value in our office culture - the relationships and collaboration it builds, and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them.
Requirements
- You have at least 5 years of experience in security incident response, threat hunting, security operations, cloud security, or other operational security domains.
- You’ve worked with at least one public cloud platform (AWS, GCP, or Azure) and cloud-native technologies like Kubernetes, Docker, or Terraform.
- You have a strong understanding of cloud-native threat actor TTPs and corresponding defensive controls and actively stay up to date with the threat landscape from various blogs, whitepapers, and conference talks.
- You’ve used a wide range of technologies and datasets to detect threats in cloud and enterprise environments
- You have experience building and supporting tools for incident response and forensic use cases using Python, Go, or similar programming languages.
Responsibilities
- Partner with our Cyber Threat Intelligence and Detection Engineering teams to identify threats to Datadog and ensure we have appropriate, accurate, high-signal detections for those threats.
- Triage escalated alerts to determine whether a security incident is occurring or may occur imminently.
- Respond to security incidents, whether as an incident commander or as an incident responder
- Make us more efficient through building tools and automations that eliminate repetitive processes
- Help us improve our overall security posture through post-incident reviews, tabletop and purple team exercises, and process/runbook improvements.
- Participate in a light on-call rotation.
Benefits
- Generous and competitive benefits package
- New hire stock equity (RSUs) and employee stock purchase plan
- Continuous career development and pathing opportunities
- Employee-focused best in class onboarding
- Internal mentor and cross-departmental buddy program
- Friendly and inclusive workplace culture
- Benefits and Growth listed above may vary based on the country of your employment and the nature of your employment with Datadog.
- Datadog offers a competitive salary and equity package, and may include variable compensation. Actual compensation is based on factors such as the candidate's skills, qualifications, and experience. In addition, Datadog offers a wide range of best in class, comprehensive and inclusive employee benefits for this role including healthcare, dental, parental planning, and mental health benefits, a 401(k) plan and match, paid time off, fitness reimbursements, and a discounted employee stock purchase plan.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
