Software Security Engineer, Detection & Response Engineering (Remote, Canada)

This is a remote position. We are looking for candidates in the USA and Canada only. 

As a Software Security Engineer on the Detection & Response Engineering team, you will work to build advanced security tools and processes around our advanced observability platform to catch and stop advanced threats to our platform, employees, and customers. You will work across all areas of the stack, do cutting edge development, detection research, and response automation, and contribute back these learnings to the wider security community. You will work alongside other security engineers, full-stack developers, and customer-facing teams in solving our security and detection challenges. 

Responsibilities:

• Collaboratively design, build, and maintain our internal detection systems based around the Grafana observability stack that process millions of security data points a day.
• Research and develop sophisticated detection (as code) rules to cover risks and threats across our product and corporate systems. Where applicable, contribute these detections back to the OSS community. 
• Work with product teams and other stakeholders to ensure we have effective telemetry of all existing and future products. 
• Build and maintain response tooling to streamline (and fully automate) our response activities. Write and maintain runbooks for handling what we can’t automate.
• Following a SOCless model, work with cross-functional teams to integrate telemetry, detections, and response procedures into the teams operational processes. 
• Design security and operations metrics to track our success and show the security value of what we do.
• Respond to security alerts, potential incidents, and customer security issues. 

Requirements:

• Solid experience with at least one programming language. We primarily use Go, TypeScript (React), and Python, but most languages translate well. You will take a code screen.
• Some experience with core security concepts and their application to modern application architectures. 
• Some experience with detection engineering concepts and practices, such as the Sigma detection rule format. 
• Some experience with public clouds, container ecosystems, and running applications securely in them. 
• A motivated self starter with ample curiosity and a bias towards action.
• A clear communicator, in person, in asynchronous communication, and in technical documentation. 
• Knowledge of, and ability to code is required for this role demonstrated by a degree in Computer Science or equivalent experience

Bonus Points:

• Working knowledge of Grafana Labs OSS projects and products. Experience in using observability (metrics, logs, traces, profiles)  tooling to solve security problems. 
• Experience working with OSS communities.
• Experience securing large-scale distributed systems running on Kubernetes in public clouds.

In Canada, the Base compensation range for this role is 153,000 CAD - 192,000 CAD.  Actual compensation may vary based on level, experience, and skillset as assessed in the interview process. Benefits include equity, bonus (if applicable) and other benefits listed here.

*Compensation ranges are country-specific. If you are applying for this role from a different location than listed above, your recruiter will discuss your specific market’s defined pay range & benefits at the beginning of the process.

*Grafana Labs may utilize AI tools in its recruitment process to assist in matching information provided in CVs to job postings. The recruitment team will continue to review inbound CVs manually to identify alignment with current openings.

  About Grafana Labs: There are more than 20M users of Grafana, the open source visualization tool, around the globe, monitoring everything from beehives to climate change in the Alps. The instantly recognizable dashboards have been spotted everywhere from a NASA launch and Minecraft HQ to Wimbledon and the Tour de France. Grafana Labs also helps more than 3,000 companies -- including Bloomberg, JPMorgan Chase, and eBay -- manage their observability strategies with the Grafana LGTM Stack, which can be run fully managed with Grafana Cloud or self-managed with the Grafana Enterprise Stack, both featuring scalable metrics (Grafana Mimir), logs (Grafana Loki), and traces (Grafana Tempo).   Benefits: For more information about the perks and benefits of working at Grafana, please check out our careers page.   Equal Opportunity Employer: At Grafana Labs we’re building a company where a diverse mix of talented people want to come, stay, and do their best work. We know that our company runs on the hard work and the dedication of our passionate and creative employees. If you're excited about this role but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways.   We will recruit, train, compensate and promote regardless of race, religion, color, national origin, gender, disability, age, veteran status, and all the other fascinating characteristics that make us different and unique. We believe that equality and diversity builds a strong organization and we’re working hard to make sure that’s the foundation of our organization as we grow.   For information about how your personal data is used once you’ve applied to a job, check out our privacy policy.