Senior Security Engineer - Detection Engineering

Location: Hybrid - Dublin Headquarters

Employment Type: Full-Time

Salary: $116k - $145k per year

About the Role

The Senior Security Engineer (Detection Engineering) leads the design, optimization, and continuous improvement of the Credit Union's detection stack to protect networks, applications, and member data. This deeply technical and cross-functional role is responsible for building and enhancing system and information security controls, maturing detection capabilities, and ensuring alignment with the NIST Cybersecurity Framework.

You will own EDR/NDR platforms, engineer SIEM pipelines, develop SOAR automation, and leverage threat intelligence, adversary simulation, and security architecture expertise to strengthen our defensive posture.

Responsibilities

Essential Duties

• Lead engineering, tuning, and optimization of Endpoint Detection & Response (EDR) and Network Detection & Response (NDR) platforms
• Drive expansion of detection engineering and automation initiatives
• Build, test, and deploy behavioral detections mapped to MITRE ATT&CK techniques and adversary TTPs
• Continuously refine detection fidelity using business context and real-world feedback
• Engineer and optimize SIEM log pipelines, parsing, and alerting
• Author runbooks, write automation scripts, and develop SOAR playbooks to accelerate response
• Build and maintain enrichment workflows and automated response actions in SOAR
• Manage a library of automated playbooks to address evolving threats
• Ensure telemetry normalization and parsing consistency across all data sources
• Operationalize threat intelligence into actionable detections, dashboards, and workflows
• Lead red/blue team engagements to validate detection effectiveness
• Integrate internal and external threat feeds to strengthen signal correlation
• Apply STRIDE and DREAD models to assess risk across systems and emerging threats
• Recommend and document compensating controls for identified risks
• Partner with Security Operations, GRC, and Engineering teams to improve detection coverage
• Document information security designs, architectures, and processes
• Mentor and cross-train team members
• Provide engineering support for technology operations, including benchmarks and evaluations
• Perform additional duties as assigned

Functional Competencies

• Strong understanding of the cyber threat landscape, adversary motivations, and modern attack vectors
• Expertise with MITRE ATT&CK and threat-informed defense
• Proficiency in at least one programming language (Python, Go, C, C++) or experience with low-code automation and SOAR tools
• Experience building and scaling observability and telemetry solutions
• Hands-on experience with adversary emulation, continuous detection tuning, and operational excellence
• Strong collaboration skills across technical and non-technical teams
• Excellent verbal and written communication

Qualifications

Minimum Qualifications

• 5+ years in Information Security, including 3+ years focused on Detection Engineering
• Hands-on experience with EDR, NDR, SIEM engineering, and SOAR automation
• Practical application of MITRE ATT&CK, STRIDE, and DREAD
• Strong scripting skills (e.g., Python, YAML) and experience with data parsing/log normalization
• Industry certifications such as CISSP, GCTI, GCIA, GDSA (preferred)

Physical Requirements

• Hybrid role based out of the Dublin headquarters

All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act, City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, and Los Angeles County Fair Chance Ordinance.