Software Security Engineer, Detection & Response Engineering (Remote, USA)

United States (Remote)

This is a remote position. We are looking for candidates in the USA and Canada only.

As a Software Security Engineer on the Detection & Response Engineering team, you will work to build advanced security tools and processes around our observability platform to detect and stop sophisticated threats impacting our platform, employees, and customers. Your responsibilities include developing detection research, automation, and contributing to the security community, collaborating with security engineers, developers, and customer teams to address security challenges.

Responsibilities:

1. Design, build, and maintain internal detection systems based on the Grafana observability stack that process millions of security data points daily.
2. Research and develop detection rules (as code) to identify risks and threats across our products and systems, and contribute these detections to the OSS community where applicable.
3. Coordinate with product teams and stakeholders to ensure effective telemetry for all current and future products.
4. Create and maintain response tooling to automate and streamline security responses, including writing runbooks for manual procedures.
5. Work within a SOCless model to integrate telemetry, detections, and response procedures into operational processes across teams.
6. Develop security and operational metrics to measure success and demonstrate the security value of our efforts.
7. Respond to security alerts, potential incidents, and customer security issues.

Requirements:

• Proficiency in at least one programming language; experience with Go, TypeScript (React), and Python preferred, with coding assessment required.
• Understanding of core security concepts and their application to modern architectures.
• Experience with detection engineering concepts, e.g., Sigma detection rule format.
• Experience with public cloud environments, container ecosystems, and secure application deployment.
• Self-motivated with curiosity and proactive problem-solving skills.
• Excellent communication skills, both written and verbal, including technical documentation.
• Degree in Computer Science or equivalent experience demonstrating coding ability.

Bonus Points:

• Knowledge of Grafana OSS projects and observability tools for security purposes.
• Experience working with OSS communities.
• Experience securing large-scale distributed systems on Kubernetes in cloud environments.

In the US, the base salary range is USD 157,000 - USD 196,000, with actual compensation based on experience and skills. Benefits include equity, bonuses, and other perks. Details are provided during the hiring process.