Senior Threat Response Engineer

Senior Threat Response Engineer

Remote

Security Operations – Detection Engineering /

Full-time (Remote) /

Remote

Apply for this job

Who We Are

Red Canary was founded to create a world where every organization can make its greatest impact without fear of cyber threats. We’re a cyber security company who protects, supports and empowers organizations to make better security decisions so they can focus on their mission without fear of cyber threats.

The combination of our market-defining technology and expertise prevents breaches every day and sets a new standard for partnership in the industry. We’re united in our commitment to customers and grounded in our values, which earned us a place on Built In’s 2025 Best Places to Work list.  If our mission resonates with you, let’s talk.

What We Believe In

- Do what’s right for the customer

- Be kind and authentic

- Deliver great quality

- Be relentless

Challenges You Will Solve

The Threat Response Engineering team is the virtual boots on the ground and responsible for remediating threats detected in Active Remediation customer environments. Being a Threat Response Engineer puts you in the driver’s seat and provides the satisfying opportunity to mitigate threats and be the defender against the adversary. We are our customers' trusted stewards who quickly respond to and remediate their security threats allowing them to focus on their business objectives.

The Active Remediation Team has extensive experience conducting investigations on endpoints and servers utilizing a range of techniques such as analyzing telemetry data from Endpoint Detection and Response (EDR) platforms, malware analysis, and threat hunting. Active Remediation takes advantage of the myriad of tools available in the Red Canary platform to perform immediate actions when threats are detected. As Threat Response Engineers, one of our goals is to identify opportunities to increase our efficiency and ensure our customer’s environments are vulnerable for the least amount of time. We do this by finding new and creative ways to use existing tooling to benefit our customers while also helping build and develop new tools to add into our arsenal.

What You'll Do

• Use Red Canary’s detection platform, detected threat information, and our customers’ security products to analyze, contain, and remediate threats in the customers’ environments
• Provide customers with comprehensive reports of the investigation and actions taken to ensure they understand what you did to clean up their environment and protect them from further damage
• Identify effective response strategies to further enhance Red Canary’s customers’ security posture
• Actively engage and collaborate with the Detection Engineering, Threat Hunting, and Intel teams to develop new ways of performing timely remediation of identified threats
• Be directly involved with and support cross-functional teams during customer security incidents
• Engage with customers and cross-functional teams during the setup of Active Remediation and response activity
• Be a mentor to peers and other members of the team while also leading team projects
• Support product improvement through collaboration with team leadership by providing insights and recommendations
• Support management through operational day to day leadership and assembling information related to the product offering

What You'll Bring

• Experience responding to security events/threats
• Very strong analytical and problem-solving skills
• A mastery of Endpoint Detection and Response (EDR) products including CarbonBlack, CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, and Palo Alto Cortex
• Strong experience  with or familiarity with Identity security products
• Deep understanding of the internal system functionality of Windows and MacOS operating systems and network communication
• Strong understanding of enterprise technology, network controls, and security operations
• Experience and enjoyment of working in a fast-paced, operational environment and successfully prioritize important tasks
• Professional and articulate with excellent written and verbal communication skills
• Deep interest in understanding and staying current with the latest adversary tactics and techniques
• The ability to support an on-call rotation

The targeted base salary for this role is $134,000 - $136,875 per year. This role is also eligible for participation in the company's bonus program, and eligible for a grant of stock options, subject to the approval of the company's board of directors. The application deadline is March 21st, 2025.

**this position will be supporting a 10pm to 8am MT shift, Sunday - Wednesday.

Benefit Highlights:

- 100% Paid Premiums- Red Canary pays 100% of your medical, dental and vision premiums for you and your dependents. No waiting period.

- Fertility Benefits- All new hires are eligible for benefits as of their first day.

- Flexible Time Off- Take the vacation and sick time you need.

- Health Reimbursement Account- Fully funded by Red Canary to offset out of pocket expenses such as deductibles, coinsurance and copays.

- Flexible Work Environment- With 60% remote workforce, Canaries can work from virtually almost anywhere.

- Paid Parental Leave- Full base pay to bond/care for your new child.

Why Red Canary?

Red Canary is where people embody our mission to improve security outcomes for all. People work hard to maintain a culture that encourages authenticity in order to do your best work. Our people are driven and committed to finding the best security outcomes, delivering real and actionable answers, and being transparent along the way.

At Red Canary, we offer a very rich benefits program to our full-time team members so they can focus on their families and improving our customers’ security. For a full list of benefits, please review our Benefits Summary:

https://resource.redcanary.com/rs/003-YRU-314/images/RedCanary_2025BenefitsSummary.pdf?version=0

Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.

Apply for this job