We are looking for a Senior Engineering Manager to lead our Linux & Cloud Workload Detection team. This role owns the evolution of behavioral detection capabilities across Linux endpoints, servers, containers, and Kubernetes environments. You will manage a team of highly skilled detection engineers, drive the strategy for Linux and cloud workload visibility, and ensure our products stay ahead of emerging threats targeting modern infrastructure.
What will you do?
Technical & domain ownership
Own Linux & Cloud Workload behavioral detection strategy across endpoints, servers, containers, and Kubernetes.
The team focuses on behavioral detections and agent-side logic, rather than signature-based or IOC-driven rules.
Define what high-fidelity detection means for modern Linux and cloud-native attacks.
Drive coverage of attacker techniques using behavioral signals, not signatures.
People & org leadership
Lead and grow a team of senior detection engineers.
Set technical standards, review detection logic, and raise the bar on quality and impact.
Build strong collaboration with Research, Product, and Platform teams.
What will you do?
Technical & domain ownership
Own Linux & Cloud Workload behavioral detection strategy across endpoints, servers, containers, and Kubernetes.
The team focuses on behavioral detections and agent-side logic, rather than signature-based or IOC-driven rules.
Define what high-fidelity detection means for modern Linux and cloud-native attacks.
Drive coverage of attacker techniques using behavioral signals, not signatures.
People & org leadership
Lead and grow a team of senior detection engineers.
Set technical standards, review detection logic, and raise the bar on quality and impact.
Build strong collaboration with Research, Product, and Platform teams.
Requirements:
Proven experience leading and growing senior engineering teams working on Linux, cloud infrastructure, or cloud-native systems.
Strong understanding of Linux internals and cloud runtime environments (containers, Kubernetes).
Hands-on experience with behavioral detection, threat analytics, or similar systems that reason about attacker behavior and system signals in production environments..
Familiarity with attacker techniques and frameworks such as MITRE ATT&CK.
Ability to reason about detection quality, false positives/false negatives, and coverage tradeoffs.
Proven experience leading and growing senior engineering teams working on Linux, cloud infrastructure, or cloud-native systems.
Strong understanding of Linux internals and cloud runtime environments (containers, Kubernetes).
Hands-on experience with behavioral detection, threat analytics, or similar systems that reason about attacker behavior and system signals in production environments..
Familiarity with attacker techniques and frameworks such as MITRE ATT&CK.
Ability to reason about detection quality, false positives/false negatives, and coverage tradeoffs.
This position is open to all candidates.
