The Lead Engineer - Incident Response Engineering position involves developing and maintaining internal applications, services, and workflows that support insider risk detection, user risk assessment, and incident response operations. The successful candidate will have expertise in frontend and backend development, JavaScript or TypeScript, React, and Python, and experience designing and integrating REST APIs and web-based services. The role requires strong problem-solving and communication skills, as well as the ability to navigate ambiguity and contribute across multiple Incident Response Engineering tools and platforms.
Requirements
- 4 year degree or equivalent experience
- 5+ years of software development experience with at least one full cycle implementation from requirement to production
- Strong problem solving and thought partnership skills
- Demonstrated sense of ownership and the ability to work with a limited set of requirements
- Expertise in frontend and backend development
- Expertise in JavaScript or TypeScript, React, and Python
- Experience designing and integrating REST APIs and web-based services
- Experience building internal applications, workflow systems, or analyst-facing tools
- Experience with SOAR platforms or security automation tools preferred
- Experience with UEBA, insider risk, behavioral analytics, or detection engineering preferred
- Familiarity with PostgreSQL or similar relational databases preferred
- Familiarity with identity and access patterns, including RBAC and Active Directory / LDAP integrations, preferred
- Familiarity with data pipelines or data-processing workflows is a strong plus
- Strong communication and collaboration skills
- Ability to navigate ambiguity and contribute across multiple Incident Response Engineering tools and platforms
Benefits
- 401(k)
- Employee discount
- Short term disability
- Long term disability
- Paid sick leave
- Paid national holidays
- Paid vacation
