Senior Security Engineer - Threat Detection and Response

Spotify listeners, creators and employees trust us to provide a safe digital platform that protects any sensitive information they share with us. Spotify Security is a distributed team that champions and delivers on initiatives with Spotify’s autonomous teams to ensure that our organization keeps information security appropriately prioritized and that the trust we have with these stakeholders is well-deserved. We focus on raising security awareness, providing security intelligence and building tools to enable these teams to feel a shared sense of responsibility for security and privacy concerns. We aim to constantly improve the security posture of our organization by iterating on our tooling and process.
The Spotify Security team is looking to advance our in-house threat detection and response capabilities. If identifying threats and adversaries using logs and security telemetry excites you, if threat hunting exercises and building alerts to stay ahead of the bad guys gets your heart pumping, if you are up for the challenge to manage security incidents and drive enterprise wide efforts for containment and response, you might want to consider joining us!

What you'll do

• You will work with our IT, infrastructure and feature teams to identify new detection opportunities and build out the signal collection to support it.
• You will determine the best solutions for monitoring, processing, and alerting on security-based signals.
• You will form repeatable processes for prioritizing and responding to alerts and develop playbooks.
• You will mature our capabilities to proactively identify security threats and develop detections.
• You will participate in response to incidents to drive containment and remediation to keep Spotify secure.

Who you are

• You like crafting repeatable processes, but when you have to do something more than a few times, you automate it!
• You like rapidly prioritizing work based on business needs and assessing risks.
• You like working in a flexible environment where you can wear many hats.
• You have at least 3 - 5 years experience with security detection engineering and response.
• You have a solid understanding of code and can whip up Python to automate your needs.
• You have an understanding of the current threat landscape and building detection and response capabilities in SaaS-oriented corp IT environments.
• You have experience working with incident response in cloud environments such as AWS, GCP or Azure.

You are welcome at Spotify for who you are, no matter where you come from, what you look like, or what’s playing in your headphones. Our platform is for everyone, and so is our workplace. The more voices we have represented and amplified in our business, the more we will all thrive, contribute, and be forward-thinking! So bring us your personal experience, your perspectives, and your background. It’s in our differences that we will find the power to keep revolutionizing the way the world listens.
Spotify transformed music listening forever when we launched in 2008. Our mission is to unlock the potential of human creativity by giving a million creative artists the opportunity to live off their art and billions of fans the chance to enjoy and be passionate about these creators. Everything we do is driven by our love for music and podcasting. Today, we are the world’s most popular audio streaming subscription service with a community of more than 320 million users.