Senior Detection and Response Engineer
: Job Details :

CoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI. The company's technology provides enterprises and leading AI labs with the most performant, efficient and resilient solutions for accelerated computing. Since 2017, CoreWeave has operated a growing footprint of data centers covering every region of the US and across Europe. CoreWeave was ranked as one of the TIME100 most influential companies of 2024.

As the leader in the industry, we thrive in an environment where adaptability and resilience are key. Our culture offers career-defining opportunities for those who excel amid change and challenge. If you're someone who thrives in a dynamic environment, enjoys solving complex problems, and is eager to make a significant impact, CoreWeave is the place for you. Join us, and be part of a team solving some of the most exciting challenges in the industry.

CoreWeave powers the creation and delivery of the intelligence that drives innovation. To learn more about our values, please visit our careers website.

About the Role:

As a Senior Detection and Response Engineer, you will join a 24/7 Security Operations team and play a critical role in safeguarding our organization's information assets and ensuring the integrity, confidentiality, and availability of our systems and data. You will be responsible for designing, implementing, and maintaining advanced threat detection systems to safeguard our organization's digital assets against cyber threats. This role requires a proactive mindset, strong analytical skills, and the ability to work collaboratively with cross-functional teams.

Key Responsibilities:

• Write custom detection logic while working with the the Security Operations team
• Assist in the day-to-day operations of the security operations center (SOC), including monitoring, analysis, and response to security incidents and alerts.
• Monitor and report the health of all security sensors across CoreWeave's environment and drive resolution of reported defects.
• Demonstrate a keen ability to multitask while still making sound decisions in high pressure situations
• Develop and implement security monitoring and detection strategies to identify and mitigate threats in real-time.
• Conduct threat hunting activities to proactively identify and address potential security risks and vulnerabilities.
• Coordinate with internal and external stakeholders to investigate security incidents, conduct root cause analysis, and develop remediation plans.
• Contribute to security incident response plans and procedures, ensuring timely and effective response to security incidents.
• Collaborate with cross-functional teams to implement security controls, policies, and procedures to protect against emerging threats and vulnerabilities.
• Stay on top of the latest security trends, threats, and technologies, and make recommendations for improving our security posture.
• Participate in security assessments, audits, and compliance initiatives to ensure adherence to regulatory requirements and industry best practices.

Required Skills:

• Ability to deliver small to medium sized projects that span several technical disciplines and teams.
• Ability to take documented detections misses and leverage available people, technology, processes to deliver effective detections.
• Strong Experience writing custom alert logic in any major SIEM (eg Splunk, Rapid 7, Sumo Logic, etc.)
• Intermediate understanding of Kubernetes fundamentals and the willingness and desire to grow their working knowledge of Kubernetes.
• Experience collaborating as a stakeholder in Purple Team & Red Team engagements.
• Practical knowledge of modern TTP frameworks. (Cyber Kill Chain, MITRE ATT&CK)
• Functional knowledge of at least 1 query language. (SQL, Splunk, HiveQL, Humio, FQL)
• Proficiency in at least 2 programming languages (Ex: Python, Bash, Go, JavaScript)
• Intermediate knowledge of Linux or macOS internals.
• Intermediate knowledge of Linux or macOS event sources. (eBPF, Endpoint Security Framework)
• Hands-on experience applying the Incident Response Lifecycle.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $180,000-$210,000. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

What We Offer

The range we've posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including:

• Medical, dental, and vision insurance - 100% paid for by the employee
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Tuition Reimbursement
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption

Our Workplace

At CoreWeave, we are committed to operating as a hybrid workplace, offering employees flexibility in how they structure their time between in-office and remote work. We recognize the significance of fostering connections, collaboration, and creativity within our office culture and its positive impact on our business. Our philosophy operating as a hybrid workplace underscores our dedication to enabling employees to tailor work-life balance to their individual preferences.

For those who do not live within 30 miles of one of our offices, we are open to considering remote work for candidates whose skills and experience strongly align with the role. While we prioritize a hybrid work environment for most roles, we understand the importance of flexibility and are open to remote work for specific positions and specialized skill sets. Onboarding is essential to your success. New employees not based out of an office will be invited to attend onboarding training at one of our hubs within their first month of employment. We continue to foster a collaborative environment by bringing teams together quarterly.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: ...@coreweave.com.