Senior Security Engineer, Detection Infrastructure

Asana is looking for a Senior Security Engineer to join our Detection and Response team. This role will lead the technical direction of the developing team, making key investments in systems and processes for building out our detection program. You will be helping to build and advise on the systems we employ to generate, collect, and surface signal to allow for detection of malicious activity on and directed towards Asana the product and company. 

The Detection and Response team is made up of Detection Infrastructure and Security Response areas. Detection Infrastructure works closely with the investigators on Security Response to provide tooling and systems that allows for expedient response and focuses on automation above manual work.

What you’ll achieve

• Guide the technical development and execution of Asana’s detection infrastructure area
• Ensure our logging and alerting infrastructure provides adequate coverage of key areas
• Identify and prioritize data sources necessary for performing detection, investigation and response 
• Evaluate and implement security event monitoring solutions
• Design, build, and maintain data pipelines and systems to deliver meaningful data to centralized security event monitoring solutions
• Develop best practices around data ingestion, normalization and enrichment to deliver the most high-signal detections to investigators
• Participate in maturing the incident response and investigative capabilities of Asana
• Deploy detections, automations, and alerts using modern software engineering practices (i.e. automated testing/validation, CI/CD pipelines, detections as code, etc.)

About you

• You want to help drive technical direction and execution for a group of detection engineers as well as work on your own projects
• You’re passionate about doing security detection and response right - and have the software engineering chops to lead execution on solutions
• You care about the experience of investigators and response engineers and desire to reduce alert fatigue early in the pipeline
• You reject the idea that more alerts equals better visibility, and develop with intention with an eye towards reducing burnout across the organization

Qualifications

• 3-5 years working in threat detection engineering
• Strong data analysis and data pipeline engineering experience
• Strong software engineering background
• Experience leading large projects and driving execution of engineers
• Proficiency working in AWS and with infrastructure as code 

• Experience with SIEM and detection tooling (StreamAlert, Splunk, EDR, IDS, etc)
• Strong working knowledge of modern threats and working familiarity with  frameworks like MITRE ATT&CK

About us

Asana enables millions of teams around the world to achieve their goals together, from small projects to strategic initiatives. For the past 5 years, we've been named a top workplace by Fortune, Great Place to Work, Fast Company, Glassdoor, and Built In for our inclusive culture that drives business results. After spending more than two years physically distanced, we're safely and mindfully returning to in-person collaboration, adding more flexibility to our office-centric hybrid culture. With offices all over the world, we are always looking for curious, collaborative, and mission-driven people to help us enable the world’s teams to work together effortlessly.