Senior Security Engineer Detection Response Platform

Join a leading fintech company that’s democratizing finance for all.

Robinhood was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood is lowering barriers and providing greater access to financial information. Together, we are building products and services that help create a financial system everyone can participate in.

As we continue to build...

We’re seeking curious thinkers looking to co-author the next chapters of our story. Joining now means helping shape our vision, structures and systems; playing a key-role as we launch into our ambitious future.

Check out life at Robinhood on The Muse!

About the role:

The Detection and Response Team (DART) at Robinhood exemplifies our Safety First value by building and operating services that protect our customers' security and privacy. The D&R Platform team develops the infrastructure that makes detection and response possible, working closely with the Incident Response (IR) team to assess threats, collect and analyze data, and respond to security incidents.

We are looking for security-oriented software engineers to create and deploy modern and innovative detection and response systems that ingest security-relevant data, transport it to the detection pipeline, and provide rich capabilities to enable the IR team to find, contain and resolve security incidents.

What you’ll do day-to-day:

• You will develop custom software and integrate third-party software to collect, enrich, transform, and process security data, such as logs, and execute detection and containment logic created by the IR team.
• You will partner with teams across Security & Privacy and Engineering to deeply integrate detection and response capabilities into Robinhood's engineering infrastructure and practices.
• You will devise new ways to detect and respond to attacks.
• You will design and implement strategies to continually improve the speed, efficacy, and safety of threat detection and containment.
• You will work in a DevOps on-call rotation every 1-2 months to respond to service outages and security incidents.

About you:

• 3+ years' experience in software engineering with 1+ year security-related experience.
• Experience developing infrastructure for or working on a security detection and/or response team.
• Bachelor's degree in Computer Science or a related field, or equivalent training, fellowship, or work experience.

Bonus points:

• Experience using or developing SIEM and SOAR or similar systems.
• Experience developing high scale data processing (ETL) pipelines.
• Experience with Python, Go, and/or AWS.

Technologies we use:

• Python and Go
• Amazon Web Services (AWS), Kubernetes, and Kafka
• Proprietary and commercial solutions for security event detection and incident management, such as Splunk, Databricks, Vector, and Carbon Black. 

We’re looking for more growth-minded and collaborative people to be a part of our journey in democratizing finance for all. If you’re ready to give 100% in helping us achieve our mission—we’d love to have you apply even if you feel unsure about whether you meet every single requirement in this posting. At Robinhood, we're looking for people invigorated by our mission, values, and drive to change the world, not just those who simply check off all the boxes.

Robinhood promotes diversity and provides equal opportunity for all applicants and employees. We are dedicated to building a company that represents a variety of backgrounds, perspectives, and skills. We believe that the more inclusive we are, the better our work (and work environment) will be for everyone. Additionally, Robinhood provides reasonable accommodations for candidates on request and respects applicants' privacy rights. To review Robinhood's Privacy Policy please visit Robinhood - US Applicant Privacy Policy.

Click here to learn more about Robinhood’s Benefits.

Robinhood is a primarily remote company. If hired, you will work as a remote employee unless the job you are applying for has a different working model specified. Please reach-out  to your recruiter if you have any questions regarding the job’s working model.