Senior Detection & Response Engineer

About the Role:

Under the supervision of the Director, Detection and Response, the Senior Detection & Response Engineer will design, implement, and manage enterprise-level security technologies and controls to detect, investigate, and respond to cyber threats. Telecommuting is available from anywhere in the United States based on manager approval.

You Will:

• Define and execute threat detection and response strategies aligned with the organization's overall risk posture and business objectives.
• Build and operationalize detection models, automation workflows, and response pipelines to identify anomalies and mitigate threats at scale.
• Create, refine, and maintain threat detection analytics to ensure high MITRE ATT&CK coverage while minimizing false positives.
• Develop and execute hypothesis-driven threat hunts across corporate and cloud environments using adversary tactics, techniques, and procedures (TTPs) to search for evidence of malicious activity.
• Monitor for security incidents, investigate suspicious activity, and coordinate cross-functional response and recovery efforts to strengthen organizational resilience.
• Perform forensic investigations to determine root causes, assess impact, and recommend measures to prevent recurrence.
• Apply foundational large language models (LLMs) and AI-driven analytics to forecast emerging threats and enhance detection and response capabilities.
• Operationalize threat intelligence solutions in partnership with the Threat Intelligence team to develop detections, response playbooks, and enrichment pipelines that enhance the effectiveness of the Detection and Response (DART) program.

You Have:

• Position requires a Master's degree in Computer Science, Engineering, Information Systems, Cybersecurity, or a related field and 4 years of experience with cybersecurity and systems engineering within enterprise environments.
• 1 year of experience with developing and implementing threat detection and response solutions in cloud-first environments (including IaaS, PaaS, and SaaS);
• 1 year of experience with applying the MITRE ATT&CK and Cyber Kill Chain framework to cybersecurity techniques and procedures to identify and prevent threats;
• 1 year of experience with developing automated detection analytics and threat hunting methodologies using scripting languages (including Python, PowerShell, and Bash), APIs, and orchestration tools;
• 1 year of experience with implementing incident response automation through SOAR platforms (including Cortex XSOAR and Phantom) and custom code to contain and remediate threats;
• 1 year of experience with utilizing Security Information and Event Management (SIEM) platforms (including Splunk, ELK/Elastic Stack, QRadar, and Azure Sentinel) to collect, correlate, and analyze security events;
• 1 year of experience with deploying and managing EDR/XDR solutions (including CrowdStrike Falcon, Microsoft Defender, and SentinelOne);
• 1 year of experience with integrating threat intelligence platforms (TIPs) (including Recorded Future, Anomali, and MISP);
• 1 year of experience with developing and tuning custom detection content using YARA and Sigma rules for proactive detection;
• 1 year of experience with leveraging cloud-native security services across AWS, Azure, and GCP; and
• 1 year of experience with conducting forensic and malware analysis to identify root causes and improve future detection and response effectiveness.

Compensation Details:

The starting base salary range for this position is typically $188,000.00 - $235,000.00 per year. In the U.S., Remitly employees are shareholders in our Company and equity is part of our total compensation plan. Your recruiter can share more information about medical benefits offered, as well as other financial benefits and total compensation components offered with this role.

Our Benefits:

• Flexible paid time off
• Health, dental, and vision + 401k plan with company matching
• Paid parental, medical, military and family care leave
• Mental Health & Family Forming Benefits
• Employee Stock Purchase Plan (ESPP)
• Continuing education and travel benefits