Discord - Senior Security Software Engineer, Detection and Response
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• 3+ years in Detection and Response as a senior IC, with demonstrated experience building (not just operating) security tooling • 3+ years programming in Python or similar - you’ll write production code, not just scripts • Strong experience with cloud security monitoring and investigations • Experience in building detections from large datasets and automating incident response processes • Deep knowledge of attacker TTPs, malware analysis, and threat hunting methodologies • Experience with container orchestration (Kubernetes) and/or serverless technologies (Cloud Functions, Workers) • Familiarity with distributed systems observability and log analysis at scale • Hands-on experience with Panther SIEM • Background in BeyondCorp / Zero-trust environments • Experience with Cloudflare security tooling • Contributions to open-source security projects • The US base salary range for this full-time position is $196,000 to $220,500 + equity + benefits. Our salary ranges are determined by role and level. Within the range, individual pay is determined by additional factors, including job-related skills, experience, and relevant education or training. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include equity, or benefits. • Why Discord? Discord plays a uniquely important role in the future of gaming. We're a multiplatform, multigenerational and multiplayer platform that helps people deepen their friendships around games and shared interests. We believe games give us a way to have fun with our favorite people, whether listening to music together or grinding in competitive matches for diamond rank. Join us in our mission! Your future is just a click away!
Responsibilities
• Build detection systems at scale. Design and implement detections across cloud infrastructure, applications, and enterprise systems using large-scale log analysis and behavioral signals. • Build detection systems at scale. • Engineer response automation. Develop tooling and workflows that reduce mean time to detection and response - turning manual playbooks into code. • Lead incident response. Serve as a subject matter expert during security incidents, driving investigations from initial triage through root cause analysis and remediation. • Lead incident response. • Architect observability. Partner with internal teams to identify new telemetry sources, improve log coverage, and ensure we have visibility where it matters. • Architect observability. • Hunt proactively. Use threat intelligence and behavioral analysis to find malicious activity before alerts fire - then turn those hunts into production detections. • Hunt proactively. • Ship production code. Contribute to a fast-moving codebase, deploying detection logic and automation tooling to production environments. • Ship production code. • Mentor and elevate. Partner with our embedded response team - coaching on investigative techniques, detection engineering principles, and incident handling. Help build a culture of continuous learning and technical excellence. • Mentor and elevate.
Benefits
• Discord is committed to inclusion and providing reasonable accommodations during the interview process. We want you to feel set up for success, so if you are in need of reasonable accommodations, please let your recruiter know. • Discord is committed to inclusion and providing reasonable accommodations during the interview process. • Please see our Applicant and Candidate Privacy Policy for details regarding Discord’s collection and usage of personal information relating to the application and recruitment process by clicking HERE.
No credit card. Takes 10 seconds.