Sr. Detection Security Engineer

Sr. Detection Security Engineer

About Us

HashiCorp is a fast-growing startup that solves development, operations, and security challenges in infrastructure so organizations can focus on business-critical tasks. We build tools to ease these decisions by presenting solutions that span the gaps. Our tools manage both physical machines and virtual machines, Windows, and Linux, SaaS and IaaS, etc. Our open source software is used by millions of users to provision, secure, connect, and run any infrastructure for any application. The Global 2000 uses our enterprise software to accelerate application delivery and drive innovation through software. 

We're looking for talented Detection Engineers to join our Threat Detection and Response Team (TDR). This team will help defend HashiCorp through strategic detection, response, and prevention patterns across all of our products and the enterprise. This person will be responsible for enhancing our detection capabilities through threat research, rule creation and alert investigation, tool development, and collaboration across teams to understand potential threat vectors which cannot be fully prevented. 

As a member of our TDR team, you’ll have an eye on the threat landscape, staying ahead of emerging threats that may target our company.  You will perform research to understand our technological footprint, the potential pathways attackers could traverse to compromise our systems, and develop detection strategies to ensure we quickly identify malicious activity.  Tooling and automation will be key to success as we scale our environments to meet customer demand.  Lastly, we can’t detect what we cant see, so driving visibility improvements across the company will be key to ensuring the TDR team is always equipped with the necessary data to protect HashiCorp.

Engineering at HashiCorp is largely a remote team. While prior experience working remotely isn't required, we are looking for team members who perform well given a high level of independence and autonomy while collaborating asynchronously within and across teams.

HashiCorp embraces diversity and equal opportunity. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. We believe the more inclusive we are, the better our company will be.

You may be a good fit: 

• 3+ years in a role performing Threat Detection, IR, Threat Intelligence, or Abuse Mitigation 
• Understand how to develop rules utilizing hypothesis driven detection research leveraging tools such as 
• Python
• Athena, SQL, Presto etc..
• Threat Intelligence Services and OSINT
• Ability to breakdown complex detection logic and to teach other team members how the detection works, the theory behind it, and also what to do when the alert is triggered
• Familiarity with MITRE ATT&CK and researching emerging threats
• Understanding of different types of detection engines and knowing the right tool to leverage at the right time
• Understanding of what logs are available and useful for:
• Linux (Production Workloads), Mac, Windows
• AWS (Primary), GCP,  Azure
• Working knowledge of Operating System security

Bonus Points:

• Working knowledge of incident response, vulnerability analysis, product security, security testing.
• Moderate development skill and willingness to contribute as needed to ensure success of the Detection and Response Program

Note to Candidates:  This is a list of items we think would define a successful candidate but we encourage you to apply if you feel you are a great match. 

#LI-RR1

#LI-Remote