Job description

Security Engineer, Detection and Response About the Role Eden Prescott is partnering with one of our top AI security clients, a fast-growing company that’s seen significant momentum over the past year, to help them hire a Security Engineer focused on detection and response. This is a hands-on opportunity to build and scale the foundational systems that protect an AI-driven infrastructure from evolving threats. You’ll work closely with engineering, IT, and compliance teams to ensure deep visibility across environments, strengthen detection capabilities, and automate key workflows that keep the company secure as it scales. What You’ll Do • Partner with engineering and infrastructure teams to design and build pipelines for collecting and correlating security telemetry. • Develop and maintain scalable, high-performance monitoring and detection infrastructure. • Create detection strategies to identify anomalous or malicious activity and ensure critical systems remain protected. • Triage, investigate, and resolve security alerts and incidents, driving them to closure with minimal business impact. • Collaborate with engineering to eliminate recurring issues and continuously refine detection rules. • Stay ahead of emerging threats and continuously evolve detection and response capabilities. • Contribute to the strategy, risk management, and automation roadmap for security operations. • Work with compliance and audit teams to maintain certifications and ensure alignment with security frameworks. • Implement pragmatic, business-driven controls across multi-cloud environments. What You’ll Bring • 5+ years of experience in security engineering, detection and response, or incident handling. • Strong track record building and scaling SOC operations in cloud-native environments. • Hands-on experience with SIEM/SOAR tools (e.g., Splunk, Microsoft Sentinel, Trellix) and telemetry instrumentation. • Familiarity with CNAPP solutions (e.g., Wiz, Orca, Defender, Singularity) across multi-cloud ecosystems. • Fluency in scripting languages such as Python, PowerShell, or JavaScript. • Automation experience with Azure Functions, Logic Apps, AWS Lambda, or Runbooks. • Expertise in IAM analysis, anomaly detection, and real-time threat response across cloud environments. • Strong communication, decision-making, and collaboration skills in a distributed team setting. • Ability to prioritize and execute in a dynamic, high-growth environment. • Bonus: familiarity with DevOps practices and experience in AWS, GCP, or Azure deployments.

Requirements