Security Engineer - Detection & Response

We believe that the way people interact with their finances will drastically improve in the next few years. We’re dedicated to empowering this transformation by building the tools and experiences that thousands of developers use to create their own products. Plaid powers the tools millions of people rely on to live a healthier financial life. We work with thousands of companies like Venmo and SoFi, several of the Fortune 500, and many of the largest banks to make it easy for people to connect their financial accounts to the apps and services they want to use. Plaid’s network covers 11,000 financial institutions across the US, Canada, UK and Europe. Founded in 2013, the company is headquartered in San Francisco with offices in New York, Salt Lake City, Washington D.C., London and Amsterdam.
The mission of Plaid's Security Operations Team is to secure environments for our employees, development, and services. We achieve this by implementing controls that ensure security in the background, measuring effectiveness and adjusting controls. We also monitor and respond to issues that occur in those environments, address events, and reduce risk exposure.
As a Detection & Response Engineer on the Security Operations team, you will be responsible for building and optimizing the detection and alerting tools that drive our response processes.  You will investigate existing signal sources from our platform and enterprise environments, identifying patterns of concern for detection and alerting.  You will build automated response mechanisms that enable for rapid data enrichment or containment of newly arisen risks.  You will work across security teams to address gaps in signal coverage, improving overall visibility to emerging threats.  Major projects may include building a log/telemetry aggregation and detection platform, automated remediation tooling, implementing new logging mechanisms, discovering risky patterns in security event streams, and defining runbooks for manual response processes where needed.
We're guided by our principles, including impact, growing together, embracing openness and positivity, and inventing tomorrow; we're looking for leaders motivated by those same principles.

What excites you

• Identifying patterns in signals and logs that indicate potential threats and risks to the organization
• Building automation that reduces response complexity and time to remediation for security concerns
• Identifying gaps in security signals and working with engineering teams to surface the necessary data
• Evaluating technologies for improving security defenses
• Integrating security controls across cloud-native and third-party tools

What excites us

• Background working in security engineering organizations, specifically on the detection and response side
• Strong familiarity with Python, Go and/or other scripting/coding languages
• History of understanding common secure patterns and detecting deviations from them
• Familiarity with working with APIs and coding to integrate data from different security controls
• Run PoC's for potential new security controls and determine their effectiveness
• Experience working with Security and Engineering teams to ensure that all critical signals are available for analysis
• Broad familiarity with security operations topics that affect detection and response functions, including identity and access, auditing and alerting, automation and orchestration, and threat hunting
• Experience building tooling around security controls and investigations
• Experience with the risks associated with financial technology companies

Plaid is proud to be an equal opportunity employer and values diversity at our company. We do not discriminate based on race, color, national origin, ethnicity, religion or religious belief, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, military or veteran status, disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state, and local laws. Plaid is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance with your application or interviews due to a disability, please let us know at accommodations@plaid.com.