Security Engineer - Detection and Response
Description
The Spotify Security team is looking to advance our threat detection and incident response capabilities. If working with logs and security telemetry to identify new and unknown threats excites you, if you are excited about building detection infrastructure and security automation at scale, and if you are up to the challenge of managing security incidents and driving enterprise-wide efforts for containment and response, then stop what you’re doing and apply!
What You'll Do
Work with our IT, infrastructure, and feature teams across Spotify to identify new detection opportunities and build out the signal collection to support it. Determine the best solutions for monitoring, processing, and alerting on security-based signals. Form repeatable processes for prioritizing and responding to alerts and developing playbooks. Mature our capabilities to proactively identify security threats and develop detections. Participate in response to incidents to drive containment and remediation to keep Spotify secure. Work with security technologies such as SIEM, EDR, SOAR and other platforms that we use in our daily operations. Use powerful AI tools to automate, accelerate and scale our engineering capabilities.
Who You Are
You have experience and interest in security detection engineering and incident response. You have a proven understanding of developer concepts and technologies such as Github, CI/CD, and infrastructure as code. You like crafting repeatable processes, but when you have to do something more than a few times, you automate it using a scripting language of your choice, or an automation platform. You have an understanding of the current threat landscape and building detection and response capabilities in SaaS-oriented corporate IT environments. You have experience working in cloud environments such as GCP, AWS, or Azure. You are excited about using generative AI to build the next generation of triage and response tooling.
Where You'll Be
This role is based in London (UK) or Stockholm (Sweden). We offer you the flexibility to work where you work best! There will be some in person meetings, but still allows for flexibility to work from home.