Security Engineer - Threat Detection
New York, New York, USA; Boston, Massachusetts, USA
Applications have closed
About Datadog:
We're on a mission to build the best platform in the world for engineers to understand and scale their systems, applications, and teams. We operate at high scale—trillions of data points per day—allowing for seamless collaboration and problem-solving among Dev, Ops and Security teams globally for tens of thousands of companies. Our engineering culture values pragmatism, honesty, and simplicity to solve hard problems the right way.
The Team:
We're looking for a security engineer to join our Threat Detection Engineering team. The team's mission is to detect and hunt for malicious activity across Datadog's internal environments.
The Opportunity:
As a Security Engineer for the Threat Detection Engineering team, you will work closely with Engineering, Compliance, and Legal to champion threat detection endeavors. You will develop detection rules to catch malicious behaviors that pose threats to Datadog. You will build and own solutions to automate detection triage, response actions, and threat hunting. You will also support the incident response team by investigating security intrusions.
You will:
Author detection rules that yield actionable alerts by...
-
Analyzing known attack methodologies (TTPs as mentioned by the MITRE ATT&CK Framework)
-
Incorporating public detections, community research, internal assessment results, and available threat intelligence into the team's overall detection capabilities
-
Partnering with engineering teams to understand Datadog's attack surface and visibility gaps
-
Automating detection playbooks to enrich alert data and minimize response time
You Are:
-
You have a deep understanding of threat detection, incident response, or threat intelligence
-
You have production experience with Amazon Web Services, Google Cloud, Azure, or Kubernetes
-
You handle infrastructure with code because automation lets you focus on the more difficult and rewarding problems
-
You value correctness and efficiency; you leave no stone unturned when diagnosing security issues
-
You are comfortable coding in Golang or Python
Bonus Points:
-
You have a documented history of relevant security research or open source contributions
-
You have experience with threat hunting
-
You want to work in a fast, high growth environment
Why You Should Apply:
-
Generous and competitive global and US benefits
-
New hire stock equity (RSUs) and employee stock purchase plan
-
Continuous career development and pathing opportunities
-
Product training to develop an in-depth understanding of our product and space
-
Best in breed onboarding
-
Internal mentor and buddy program cross-departmentally
-
Friendly and inclusive workplace culture
#LI-EK1
Equal Opportunity at Datadog:
Datadog is an Affirmative Action and Equal Opportunity Employer and is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and more. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.
Your Privacy:
Any information you submit to Datadog as part of your application will be processed in accordance with Datadog’s Applicant and Candidate Privacy Notice.
Tags: Automation Azure Cloud Compliance GCP Golang Incident response Kubernetes MITRE ATT&CK Open Source Privacy Python Threat detection Threat intelligence TTPs
Perks/benefits: Career development Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs