Senior Security Engineer, Detection & Response

undefined ago • 6 Years + • Cyber Security • $159,000 PA - $278,250 PA

Job Summary

Job Description

Rippling is seeking a highly motivated and experienced Senior Security Engineer for their Detection and Response team (DART). This role involves automating security operations, understanding cloud security, and proactively detecting threats and responding to incidents. The engineer will mature detection capabilities, automate response workflows, and ensure environmental resilience, focusing on chasing threats, enriching security data, and building automated solutions.
Must have:
  • Design, develop, and implement automation for daily DART tasks.
  • Write and refine detection logic and rules to identify emerging threats.
  • Gather, analyze, and leverage security data from cloud systems, with a strong focus on AWS.
  • Act as a key responder for security incidents, from initial triage to in-depth investigation and remediation.
  • Create and maintain Python scripts to automate security event workflows, develop new alerts and detections, and enrich security data.
  • Design, build, and manage the infrastructure for collecting, processing, and disseminating threat intelligence.
  • Develop and execute hypothesis-driven threat hunts across corporate and cloud environments.
  • Pull and correlate data from disparate sources to provide context and clarity during incident investigations.
Perks:
  • competitive salary
  • benefits
  • equity

Job Details

About The Role:

We are seeking a highly motivated and experienced Senior Security Engineer to become a pivotal member of our Detection and Response team (DART). The ideal candidate will be a hands-on engineer with a passion for automating security operations, a deep understanding of cloud security, and a proactive mindset in threat detection and incident response.

You will be at the forefront of our security efforts defending our customers, responsible for maturing our detection capabilities, automating response workflows, and ensuring the resilience of our environments.

If you are an engineer who thrives on chasing down threats, enriching security data, and building automated solutions, we encourage you to apply!

What You'll Do:

  • Automate and Innovate: Design, develop, and implement automation for daily DART tasks to enhance efficiency and response times.
  • Expand Detection Coverage: Write and refine detection logic and rules to identify emerging threats across our corporate and cloud infrastructures.
  • Cloud Security Operations: Gather, analyze, and leverage security data from our cloud systems, with a strong focus on AWS, to inform detection and response activities.
  • Incident Response: Act as a key responder for security incidents, from initial triage of alerts to in-depth investigation and remediation. This includes responding to signals from our various security tools and cloud environments.
  • Scripting and Development: Create and maintain Python scripts to automate security event workflows, develop new alerts and detections, and enrich security data.
  • Threat Intelligence Operations: Design, build, and manage the infrastructure for collecting, processing, and disseminating threat intelligence. Automate the intelligence lifecycle to provide actionable data and strategic foresight to the entire security organization.
  • Hypothesis-Driven Threat Hunting: Develop and execute hypothesis-driven threat hunts across our corporate and cloud environments. Use your knowledge of adversary tactics, techniques, and procedures (TTPs) to search for evidence of adversarial activity.
  • Data Enrichment: Demonstrate a passion for pulling and correlating data from disparate sources to provide context and clarity during incident investigations, moving beyond simple alert triage.

What We're Looking For:

  • Proven Experience: A minimum of 6 years of experience in a hands-on security engineering role, with a demonstrable focus on detection engineering and incident response.
  • Cloud Incident Response Expertise: Extensive experience with incident response in cloud environments, particularly AWS.
  • Strong Engineering and Coding Skills: Proficiency in scripting and programming, with a strong preference for Python. The ability to write clean, effective code for automation and tool development is essential.
  • Investigative Nature: An inquisitive mindset and a desire to dig deep into data to uncover the full scope of a potential threat. You should be driven by curiosity and a need to find answers.
  • Automation Mindset: A genuine passion for automating security workflows and a proven track record of doing so.
  • Deep Detection and Response Knowledge: A thorough understanding of the incident response lifecycle, modern attack vectors, and the MITRE ATT&CK framework.
  • Data-Driven Approach: A desire to go beyond surface-level triage and a keen interest in data enrichment to understand the full scope of a security event.
  • Excellent Communication: The ability to clearly and concisely communicate technical findings and security risks to both technical and non-technical audiences.

Additional Information

Rippling is an equal opportunity employer. We are committed to building a diverse and inclusive workforce and do not discriminate based on race, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, veteran or military status, or any other legally protected characteristics, Rippling is committed to providing reasonable accommodations for candidates with disabilities who need assistance during the hiring process. To request a reasonable accommodation, please email accomodations@rippling.com

Rippling highly values having employees working in-office to foster a collaborative work environment and company culture. For office-based employees (employees who live within a defined radius of a Rippling office), Rippling considers working in the office, at least three days a week under current policy, to be an essential function of the employee's role.

This role will receive a competitive salary + benefits + equity. The salary for US-based employees will be aligned with one of the ranges below based on location; see which tier applies to your location here.

The pay range for this role is:

159,000 - 278,250 USD per year (US Tier 1)

Similar Jobs

USE Insider - Inside Sales Specialist - Mexico

USE Insider

Mexico City, Mexico (Hybrid)
3 Months ago
undefined - Principal Software Engineer

Tel Aviv-Yafo, Tel Aviv District, Israel (Hybrid)
2 Months ago
we are unseen  - Senior Producer

we are unseen

Tokyo, Japan (On-Site)
3 Weeks ago
Epic Games - Creator Success Manager

Epic Games

(On-Site)
6 Months ago
The E.W. Scripps Company - News Producer, WTKR

The E.W. Scripps Company

Norfolk, Virginia, United States (On-Site)
3 Weeks ago
Aledade - Senior Security Engineer II (Engineering & Tooling)

Aledade

United States (Remote)
6 Months ago
bytedance - Threat Intelligence Engineer, Security Assurance

bytedance

Singapore (On-Site)
9 Months ago
bytedance - Security Systems Engineer, Fleet Management

bytedance

Singapore (On-Site)
7 Months ago
sphere entertainment - Analyst Security Intelligence

sphere entertainment

Las Vegas, Nevada, United States (On-Site)
1 Month ago
Normalyze - Lead DevOps Engineer - Enterprise Cybersecurity - SaaS - Bay Area, CA

Normalyze

California, United States (Remote)
9 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Stord - Area Manager

Stord

Atlanta, Georgia, United States (On-Site)
4 Weeks ago
Socialpoint - Lead Marketing Artist

Socialpoint

Barcelona, Catalonia, Spain (Hybrid)
2 Months ago
ISS Stoxx - Content Analyst (EMEA & APAC Market)

ISS Stoxx

Makati City, Metro Manila, Philippines (Hybrid)
3 Months ago
KPIT - Autosar-Technical Leader

KPIT

Bengaluru, Karnataka, India (Hybrid)
10 Months ago
Adobe - Software Development Engineer, Site Reliability Engineering

Adobe

Bucharest, Bucharest, Romania (On-Site)
3 Months ago
kaizen gaming  - Senior iOS Software Engineer

kaizen gaming

Athens, Greece (Hybrid)
1 Month ago
TiMi Studio Group - Senior Business Development Manager

TiMi Studio Group

London, England, United Kingdom (On-Site)
2 Months ago
Canonical - MLOps Field Engineer

Canonical

(Remote)
2 Months ago
Visa - Director, Go-to-Market Strategy – Risk Solutions

Visa

Atlanta, Georgia, United States (Hybrid)
4 Weeks ago
Illumina - Director, Medical Affairs

Illumina

United States (Remote)
3 Months ago

Get notifed when new similar jobs are uploaded

Jobs in United States

Anavation - Principal Cyber Engineer

Anavation

Lorton, Virginia, United States (Hybrid)
5 Months ago
FlockSafety - Traveling Installation Technician

FlockSafety

Utica, New York, United States (Remote)
1 Month ago
Nintendo - Lead Sound Designer/Composer (NST)

Nintendo

Redmond, Washington, United States (Hybrid)
8 Months ago
ElevenLabs - Deal Desk Agent

ElevenLabs

New York, New York, United States (Remote)
3 Months ago
Apple - UI Engineer

Apple

Sunnyvale, California, United States (On-Site)
2 Months ago
Anavation - DevOps Engineer

Anavation

Lorton, Virginia, United States (Hybrid)
4 Months ago
Nice - SMB Account Executive

Nice

Hoboken, New Jersey, United States (On-Site)
1 Month ago
Tennr - Sales Development Representative

Tennr

New York, New York, United States (On-Site)
2 Months ago
Findhelp - Senior Staff Technical Solutions Account Manager

Findhelp

Madison, Wisconsin, United States (On-Site)
2 Months ago
FORTUNE - UI/UX Designer

FORTUNE

New York, New York, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Apple - Security Software Engineer – Software Supply Chain Security

Apple

Seattle, Washington, United States (On-Site)
2 Months ago
Vercel - Software Engineer, CDN Security

Vercel

United States (Remote)
2 Months ago
Aledade - Staff Security Engineer (Forensic Engineer)

Aledade

United States (Remote)
3 Months ago
Epic Games - Security Engineer - Backend (Asset Integrity)

Epic Games

Porto Alegre, State Of Rio Grande Do Sul, Brazil (On-Site)
4 Months ago
FalconX - Senior DevSecOps Engineer (Cloud Security Implementation)

FalconX

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Morning Star - Security Analyst L1

Morning Star

Mumbai, Maharashtra, India (Hybrid)
1 Year ago
Zuora - Security Engineer

Zuora

Sydney, New South Wales, Australia (Hybrid)
3 Months ago
Lambda - Senior Software Engineer - Kernel/Security

Lambda

San Francisco, California, United States (Hybrid)
1 Month ago
TransUnion - Senior Analyst - Cyber Security

TransUnion

(Remote)
2 Months ago
PwC - Internship program - Cybersecurity and Privacy

PwC

Bangkok, Bangkok, Thailand (On-Site)
10 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (Hybrid)

Bengaluru, Karnataka, India (Hybrid)

Bengaluru, Karnataka, India (On-Site)

Austin, Texas, United States (Hybrid)

Bengaluru, Karnataka, India (On-Site)

New York, United States (On-Site)

Bengaluru, Karnataka, India (On-Site)

San Francisco, California, United States (On-Site)

View All Jobs

Get notified when new jobs are added by Rippling

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug