Security Engineer - Threat Detection & Response

The Spotify Security team is looking to advance our in-house threat detection and response capabilities. If identifying threats and adversaries using logs and security telemetry excites you, if threat hunting exercises and building alerts to stay ahead of attackers gets your heart pumping, if you are up for the challenge to manage security incidents and drive enterprise-wide efforts for containment and response, you might want to consider joining us!

What You'll Do

• You will work with our IT, infrastructure, and feature teams to identify new detection opportunities and build out the signal collection to support it.
• You will resolve the best solutions for monitoring, processing, and alerting on security-based signals.
• You will form repeatable processes for prioritizing and responding to alerts and developing playbooks.
• You will mature our capabilities to proactively identify security threats and develop detections.
• You will participate in response to incidents to drive containment and remediation to keep Spotify secure.

Who You Are

• You like crafting repeatable processes, but when you have to do something more than a few times, you automate it!
• You like rapidly prioritizing work based on business needs and assessing risks.
• You like working in a flexible environment where you can wear many hats.
• You have at least 2+ years of proven ability with security detection engineering and response.
• You have a validated understanding of code and can whip up Python to automate your needs.
• You have an understanding of the current threat landscape and building detection and response capabilities in SaaS-oriented corp IT environments.
• You have experience working with incident response in cloud environments such as AWS, GCP or Azure.

Where You'll Be

• We are a distributed workforce enabling our band members to find a work mode that is best for them!
• Where in the world? For this role, it can be within the Americas region in which we have a work location and is within working hours. 
• Working hours? We operate within the Eastern Standard time zone for collaboration and ask that all be located in that time zone in the East Coast.
• Prefer an office to work from home instead? Not a problem! We have plenty of options for your working preferences. Find more information about our Work From Anywhere options here.

Spotify is an equal opportunity employer. You are welcome at Spotify for who you are, no matter where you come from, what you look like, or what’s playing in your headphones. Our platform is for everyone, and so is our workplace. The more voices we have represented and amplified in our business, the more we will all thrive, contribute, and be forward-thinking! So bring us your personal experience, your perspectives, and your background. It’s in our differences that we will find the power to keep revolutionizing the way the world listens.
Spotify transformed music listening forever when we launched in 2008. Our mission is to unlock the potential of human creativity by giving a million creative artists the opportunity to live off their art and billions of fans the chance to enjoy and be passionate about these creators. Everything we do is driven by our love for music and podcasting. Today, we are the world’s most popular audio streaming subscription service with a community of more than 381 million users.
Global COVID and Vaccination DisclosureSpotify is committed to safety and well-being of our employees, vendors and clients. We are following regional guidelines mandating vaccination and testing requirements, including those requiring vaccinations and testing for in-person roles and event attendance. For the US, we have mandated that all employees and contractors be fully vaccinated in order to work in our offices and externally with any third-parties. For all other locations, we strongly encourage our employees to get vaccinated and also follow local COVID and safety protocols.
This role is not eligible for hire in Colorado, USA.