we are looking for a Detection Engineer 2 – CSM.
The Product Detection Engineering team develops impactful security detection content for our portfolio of cloud security products. As part of the Security Research organization, you will join a diverse team of hackers and builders who launch impactful security products and research via cross-company collaboration, partnerships with the security community and open source initiatives.
As a Detection Engineer II for Cloud Security Management (CSM), you will deliver detection content to our security products in order to notify customers when risky configuration changes or potential runtime threats are detected in their cloud environments. You will creatively identify ways to provide coverage of security frameworks to our customers and identify areas of improvement for technology, process and detection for us. Together with your team, you will research attacker techniques against cloud-native technologies and evangelize your findings with the community.
What Youll Do:
Learn everything about detecting threats and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
Leverage Open Policy Agent (OPA) to build and maintain highly contextualized detections for our Cloud Security Posture Management (CSPM) product using OPAs Rego policy language to protect our customer cloud environments and test via Terraform
Model cloud native technical controls across a variety of both governmental and commercial compliance frameworks to help our customers achieve both compliant and secure cloud configuration state
Create runtime threat detections for cloud workloads with eBPF technology
Partner with product management, engineering, security research and customers to develop roadmaps of content for cloud security and compliance concerns
Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
Advocate for yourself and the security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field
The Product Detection Engineering team develops impactful security detection content for our portfolio of cloud security products. As part of the Security Research organization, you will join a diverse team of hackers and builders who launch impactful security products and research via cross-company collaboration, partnerships with the security community and open source initiatives.
As a Detection Engineer II for Cloud Security Management (CSM), you will deliver detection content to our security products in order to notify customers when risky configuration changes or potential runtime threats are detected in their cloud environments. You will creatively identify ways to provide coverage of security frameworks to our customers and identify areas of improvement for technology, process and detection for us. Together with your team, you will research attacker techniques against cloud-native technologies and evangelize your findings with the community.
What Youll Do:
Learn everything about detecting threats and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
Leverage Open Policy Agent (OPA) to build and maintain highly contextualized detections for our Cloud Security Posture Management (CSPM) product using OPAs Rego policy language to protect our customer cloud environments and test via Terraform
Model cloud native technical controls across a variety of both governmental and commercial compliance frameworks to help our customers achieve both compliant and secure cloud configuration state
Create runtime threat detections for cloud workloads with eBPF technology
Partner with product management, engineering, security research and customers to develop roadmaps of content for cloud security and compliance concerns
Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
Advocate for yourself and the security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field
Requirements:
A previous background in cloud security engineering, detection engineering, or other operational security function
Experience operating in at least one public cloud platform (AWS, GCP, Azure) and other cloud native technologies (Kubernetes, Docker, Terraform)
Understanding of modern cloud native attacker techniques and are familiar with technical controls to prevent and detect these attacks
Proficient understanding of Linux internals and the use of eBPF to enable security observability at runtime
Experience researching and communicating compliance frameworks and aligning these frameworks to technical controls
Basic proficiency with Python, Golang or other programming languages
Experience measuring the quantitative and qualitative effectiveness of security controls to make data-driven decisions
A previous background in cloud security engineering, detection engineering, or other operational security function
Experience operating in at least one public cloud platform (AWS, GCP, Azure) and other cloud native technologies (Kubernetes, Docker, Terraform)
Understanding of modern cloud native attacker techniques and are familiar with technical controls to prevent and detect these attacks
Proficient understanding of Linux internals and the use of eBPF to enable security observability at runtime
Experience researching and communicating compliance frameworks and aligning these frameworks to technical controls
Basic proficiency with Python, Golang or other programming languages
Experience measuring the quantitative and qualitative effectiveness of security controls to make data-driven decisions
This position is open to all candidates.
