Leading investigations of complex, organization-wide security events and establishing best practices across multiple security domains (log analysis, digital forensics, malware analysis)
Designing and implementing the strategic roadmap for threat detection capabilities, creating high-fidelity detection systems based on deep understanding of advanced threat actor TTPs
Architecting scalable incident response processes and driving automation across the entire IR lifecycle, establishing patterns for the organization
Serving as incident commander for critical, cross-organizational security incidents and mentoring others in effective incident management practices
Driving security research initiatives, discovering novel detection mechanisms and presenting findings to internal teams, executive leadership, and external audiences
Defining build-vs-buy strategies for security tooling, leading major technical evaluations and driving organizational standards for security automation
Scaling the security team's capabilities and maturity through technical leadership, mentorship, establishing engineering best practices, and raising the hiring bar

Requirements

9+ years in Detection Engineering, Incident Response, Advisory Emulation, Offensive Security and/or Threat Intelligence
Experience in high-growth environments where you've scaled security capabilities alongside rapid organizational expansion, managing evolving threat landscapes and increasing complexity
Exceptional communicator who can influence technical strategy across all organizational levels, from engineers to executive leadership
Proven track record leading critical, multi-week incident response efforts and driving post-incident strategic improvements
Deep technical expertise with demonstrated ability to architect scalable security systems and drive innovation in detection capabilities
History of moving forward ambiguous, organization-wide initiatives through influence, technical vision, and cross-functional collaboration
Expert-level knowledge of attacker tactics, techniques, and procedures across multiple threat actor groups
Systems thinker who navigates complexity pragmatically while building toward elegant, maintainable solutions
Strong experience with cloud security architecture and building production-grade automation and tooling
Strong scripting skills in multiple scripting/programming languages (Python, Go, etc.)

Benefits

Generous Time Off: 14 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees
Comprehensive Health Plans: Medical, Dental, and Vision coverage for all full-time employees and their families.
Generous HSA Contribution: If you choose a High Deductible Health Plan, Abridge makes monthly contributions to your HSA.
Paid Parental Leave: Generous paid parental leave for all full-time employees.
Family Forming Benefits: Resources and financial support to help you build your family.
401(k) Matching: Contribution matching to help invest in your future.
Personal Device Allowance: Tax free funds for personal device usage.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Lifestyle Wallet: Monthly contributions for fitness, professional development, coworking, and more.
Mental Health Support: Dedicated access to therapy and coaching to help you reach your goals.
Sabbatical Leave: Paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.
... and much more!

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

detection engineeringincident responseadvisory emulationoffensive securitythreat intelligencecloud security architecturescriptingautomationmalware analysislog analysis

Soft Skills

exceptional communicatorinfluencetechnical leadershipmentorshipcross-functional collaborationsystems thinkingproblem-solvingstrategic improvementorganizational influenceeffective incident management