CrawlJobs Logo

Global Detection and Response Lead

openai.com Logo

OpenAI

Location Icon

Location:
United States , San Francisco

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

347000.00 - 490000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a Global Detection and Response Lead to own and scale OpenAI’s cybersecurity detection and response operations. In this role, you will set the strategy and drive execution for security monitoring, incident response, recovery, and post-incident improvements across our global infrastructure. You will be a hands-on leader with deep technical credibility and strong operational instincts. You will build and mentor high-performing teams, partner closely with Infrastructure, Research, Product Security, Enterprise Security, IT, and Engineering, and ensure that detection and response capabilities are embedded by design into the systems that power OpenAI. This is a strategic and practical leadership role requiring deep technical credibility, operational rigor, and the ability to build high-performing teams in a fast-moving environment.

Job Responsibility:

  • Oversee global detection and response operations, including continuous monitoring, triage, investigation, containment, and remediation of security events across a diverse set of networks and infrastructure
  • Lead, mentor, and directly manage several small teams of senior engineers across observability, detection and response, and threat intelligence
  • Hire and scale these functions deliberately and proportionately as OpenAI’s compute footprint and platform ambitions grow
  • Ensure world-class operational rigor and readiness through management of incident playbooks, on-call and escalation paths, tabletop exercises, and continuous improvement of response quality and speed
  • Improve detection quality and coverage by partnering with engineering teams to ensure critical telemetry is available, reliable, and actionable across cloud, corporate, and production environments
  • Deeply partner across all of OpenAI to evaluate and respond to emergent security concerns in a frontier AI lab environment, such as detection and response strategies for agents operating across infrastructure at scale
  • Build a world-class security program capable of withstanding tier-1 adversaries by maximally embracing our own models to solve frontier security problems

Requirements:

  • 10+ years in cybersecurity with deep expertise in detection engineering, incident response, and security operations
  • Active U.S. Government security clearance (Top Secret) or willingness and eligibility to obtain one
  • Mission-oriented, have unimpeachable integrity, and are passionate and motivated to detect and respond to adversaries in a highly complex, fast-paced environment
  • Deep experience building and leading detection and response, instrumentation/observability, and threat intelligence teams across a global footprint, including airgapped and sovereign environments
  • Stellar leadership skills, and a demonstrated history of driving durable, and continuous improvements to programs, processes, and people
  • Exceptional written and verbal communication skills, can remain calm under pressure, and can effectively run command of security incidents involving numerous stakeholders across a diverse gamut of teams, expertise, and seniority
  • Deep expertise in modern observability stacks (e.g., SIEM, data lakes, EDR, cloud telemetry, logging) and detection primitives
  • Understand modern adversary tradecraft (TTPs) and have demonstrated experience and expertise translating it into practical detection strategies and response actions
What we offer:
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Relocation support for eligible employees
  • Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided
  • Offers Equity
  • Performance-related bonus(es) for eligible employees

Additional Information:

Job Posted:
March 10, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
OpenAI - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Global Detection and Response Lead

VP, Channel Sales

At Corelight, we believe that the best approach to cybersecurity risk starts wit...
Location
Location
United States , North America
Salary
Salary:
350000.00 - 419000.00 USD / Year
https://corelight.com/ Logo
Corelight
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Develop and execute a global distribution and reseller channel strategy and Global channel partners program aligned with the company's overall sales and business objectives, including the go-to-market and detailed plan for this channel
  • Define the long-term revenue ambitions and lead the business planning for the Reseller Channel, including short and long-term targets per geography
  • Contribute to the preparation of the Global 2000, SLED, and Enterprise Segment strategy and lead the definition of the sales part of the strategy, including sales ambition
  • Oversee implementation of Global channel partner sales strategy and execution of processes connected to recruitment, onboarding, and management of the distribution and reseller channel partners
  • Lead the global distribution and resellers channel sales teams to forecast revenue, track performance metrics, and ensure effective communication and collaboration
  • Lead selected Sales Programs/Projects, including the Global channel partners program
  • Actively support the selling process via training and coaching of sales teams, co-selling partner visits, partner profiling, and enabling
  • Establish and maintain strong relationships with key distribution and reseller partners
  • Oversee that ongoing support, guidance, and resources are provided to channel partners
  • Define and align promotions for the Distribution and Reseller Channel, and monitor its performance
Job Responsibility
Job Responsibility
  • Develop and execute a global distribution and reseller channel strategy and Global channel partners program aligned with the company's overall sales and business objectives, including the go-to-market and detailed plan for this channel
  • Define the long-term revenue ambitions and lead the business planning for the Reseller Channel, including short and long-term targets per geography
  • Contribute to the preparation of the Global 2000, SLED, and Enterprise Segment strategy and lead the definition of the sales part of the strategy, including sales ambition
  • Oversee implementation of Global channel partner sales strategy and execution of processes connected to recruitment, onboarding, and management of the distribution and reseller channel partners
  • Lead the global distribution and resellers channel sales teams to forecast revenue, track performance metrics, and ensure effective communication and collaboration
  • Lead selected Sales Programs/Projects, including the Global channel partners program
  • Actively support the selling process via training and coaching of sales teams, co-selling partner visits, partner profiling, and enabling
  • Establish and maintain strong relationships with key distribution and reseller partners
  • Oversee that ongoing support, guidance, and resources are provided to channel partners
  • Define and align promotions for the Distribution and Reseller Channel, and monitor its performance
What we offer
What we offer
  • Equity
  • Additional benefits
  • Fulltime
Read More
Arrow Right

Head of Information Security

The Head of Information Security is a senior technical leadership role. The role...
Location
Location
Poland , Kraków
Salary
Salary:
Not provided
content.perkinelmer.com Logo
PerkinElmer
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Engineering, or related field
  • 5+ years of experience in technical cybersecurity roles
  • Proven experience leading enterprise-scale security engineering and operations teams
Job Responsibility
Job Responsibility
  • Own the enterprise security architecture across network, endpoint, cloud, identity, and application domains
  • Define technical security standards, reference architectures, and engineering patterns
  • Lead the selection, deployment, and lifecycle management of security platforms and tooling
  • Embed security-by-design into infrastructure, cloud, and application initiatives
  • Lead Security Operations (SOC / SecOps), including detection, response, and operational resilience
  • Own vulnerability management, threat intelligence, and security telemetry
  • Drive continuous improvement in detection, automation, and response effectiveness
  • Lead the Cybersecurity Incident Response Team (CIRT)
  • Act as technical incident commander during major security incidents
  • Own investigation, containment, eradication, and recovery activities
What we offer
What we offer
  • Private healthcare including dental care
  • Life and long-term disability insurance
  • MyBenefit Cafeteria system
  • Multisport Card
  • Social Fund Subsidies
  • Home Office allowance
  • Tuition reimbursement
  • Referral awards
  • Internal career development opportunities in multiple business areas
  • Day off to celebrate your birthday
Read More
Arrow Right

Principal Security Research Manager

Microsoft Defender Experts provides expert-led services that help organizations ...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of experience which should include experience in managing direct teams and leading Security research and operations in a large environment
  • Good understanding of large-scale enterprise IT infrastructure, including cloud and hybrid setup
  • Deep knowledge of various kinds of attacks, threats and mitigation measures
  • Ability to communicate effectively across a globally distributed team
  • Computer science or related educational degree
  • Proven experience around scaling security operations using technology and automation
Job Responsibility
Job Responsibility
  • Run managed detection and response operations, in close partnership with a globally distributed team
  • Lead our coordinated response to complex security threats and incidents to effectively protect our global customers
  • Use advanced tools, real-time analytics, AI and threat intelligence to rapidly detect an adversary and evict them from our customer’s environment
  • Collaborate with engineering, program management and researchers across defender products to help enhance Defender Experts capabilities
  • Manage scale of research, operations through automation and innovation and driving operational excellence through a data-driven approach
  • Attract, coach and retain the best talent in the industry
  • Fulltime
Read More
Arrow Right

Cybersecurity Manager - Detection and Response

Microsoft Incident Response – the Detection and Response Team (DART) – part of t...
Location
Location
United Kingdom , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field and several years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection and several years of experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field and several years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR equivalent experience
  • Many years of people management and/or informal/indirect team leadership experience
  • Strong analytic, qualitative, and quantitative reasoning skills
  • Track record of successfully managing a technical business group and maintaining consistent growth
  • Recognized as a strategic leader who can hire, retain and motivate diverse quality talent
  • Experience leading both a services organization and product development function
  • Develop business strategy and provide technical thought leadership
  • Manage customer engagements escalations to ensure customer satisfaction
Job Responsibility
Job Responsibility
  • People Management: Responsible for mentoring, managing and leading a team of cyber security analysts, engineers, developers, leads and incident managers
  • Managers deliver success through empowerment and accountability by modeling, coaching, and caring
  • Strategic Initiatives: Secure partner relationships and work closely with internal product and services groups as well as co-delivering with Microsoft’s Partner ecosystem
  • Develop and mentor individual contributors through open communication, training and development opportunities and performance management processes
  • Develop and maintain objectives, metrics and KPIs supporting the department’s strategic direction and continuously improve incident response technical capabilities
  • Communicate complex and technical issues to diverse audiences, verbally and in writing, in an easily understood, authoritative, and actionable manner
  • Present to a wide range and size of audiences from IT Pro, to CxO, to business decision makers
  • Technical leadership and executive presence to establish Trusted Technical Advisor to influence senior decision makers to mature and promote customer’s security posture across the overall technology landscape
  • Drive investigative teams to exhaust all investigative leads in the expectation of discovering novel attacker techniques
  • Investigate and research these techniques, and partner with threat intelligence and security engineering to drive security tooling and product enhancements
  • Fulltime
Read More
Arrow Right

Senior Director of Security Operations

The Senior Director of Security Operations is a senior leadership role responsib...
Location
Location
Netherlands; United Kingdom; Poland , Amsterdam; London; Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience leading security operations with a primary specialisation in cyber defense within complex global environments
  • Deep expertise across Threat Intelligence, Threat Hunting, Detect & Respond, and Offensive Security
  • Proven experience leading senior leaders and multi-disciplinary teams
  • Strong strategic thinking combined with execution discipline
  • Ability to lead calmly and decisively during high-impact incidents
  • Relevant security certifications (e.g. CISSP, CISM, GIAC) preferred but not mandatory
Job Responsibility
Job Responsibility
  • Define and own the unified security operations strategy
  • Design and evolve the global operating model for security defense
  • Translate strategy into clear roadmaps, priorities, and measurable outcomes
  • Operate as a 'leader of leaders,' mentoring and empowering senior domain leads
  • Lead the operational security due diligence (DD) for target companies
  • Define and execute the roadmap for integrating acquisitions into Arrive’s security operations ecosystem
  • Establish and lead a threat intelligence capability
  • Own and mature proactive threat hunting across endpoint, network, and cloud environments
  • Support the Detect & Respond Lead in defining and executing the strategy for global detection capabilities and 24/7 monitoring
  • Enable the Offensive Security Lead to design and execute robust red teaming and adversary simulation campaigns
What we offer
What we offer
  • Shape global security defense capabilities at scale
  • Operate as a trusted senior leader within Global Security
  • Balance strategic influence with real operational ownership
  • Be part of a mission-driven, global organisation transforming urban mobility
  • Fulltime
Read More
Arrow Right

Security Operations Lead

Replit is the agentic software creation platform that enables anyone to build ap...
Location
Location
United States , Foster City
Salary
Salary:
220000.00 - 325000.00 USD / Year
replit.com Logo
Replit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in Security Operations, with 3+ years in a senior or lead capacity
  • Experience leading or collaborating with 24/7 SOC environments (internal, hybrid, or MSSP)
  • Strong experience with SIEM platforms (Chronicle, Splunk, Elastic, Sentinel, Panther, etc.)
  • Deep understanding of: Cloud security monitoring (GCP required
  • AWS/Azure preferred), SaaS security monitoring (Okta, Google Workspace, GitHub, Slack, etc.), Endpoint security telemetry (EDR/XDR tools such as CrowdStrike, SentinelOne, or Defender), Kubernetes and container detection
  • Hands-on detection engineering skills, event correlation, threat hunting, and log analysis
  • Familiarity with AI-based SOC platforms and LLM-driven detection/triage tools
  • Strong understanding of identity security, OAuth/OIDC, and API telemetry patterns
  • Experience with SOAR and scripting (Python, Go, Bash)
  • Knowledge of MITRE ATT&CK, cloud kill chains, behavioral detections, and detection lifecycle management
Job Responsibility
Job Responsibility
  • Lead, mentor, and scale a global SOC team responsible for 24/7 monitoring, alert intake, triage, correlation, and escalation
  • Build operational rigor: processes, runbooks, SLAs, metrics, and quality standards for high-scale environments
  • Evaluate, adopt, and integrate AI-native SOC technologies for triaging, detection, and correlation
  • Own the entire SIEM ecosystem—ingestion, normalization, correlation, enrichment, tuning, dashboards, and metrics
  • Develop high-fidelity detections for: Cloud-native attacks, Identity threats and lateral movement, SaaS misconfigurations and privilege abuse, Endpoint malware/behavior anomalies, Insider threats and account takeover patterns
  • Lead day-to-day triage and threat analysis activities, ensuring accurate categorization and prioritization
  • Partner with Cloud Security on cloud posture and preventative controls
  • Work with Compliance/GRC to support SOC 2, ISO 27001, and audit readiness
  • Collaborate with SRE and Engineering to instrument new services with structured logs and detection hooks
  • Coordinate with IT / Endpoint teams to ensure full endpoint telemetry and EDR response readiness
What we offer
What we offer
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Commuter Benefits
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement
  • Flexible Time Off (FTO) + Holidays
  • Fulltime
Read More
Arrow Right

Senior Director, Security Engineering

Crusoe is seeking a technical and experienced Director of Security Engineering t...
Location
Location
United States , San Francisco
Salary
Salary:
256000.00 - 320000.00 USD / Year
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in security engineering
  • At least 4+ years leading security teams
  • Ability to think strategically, set a clear vision, make informed decisions, and guide the team towards achieving security objectives
  • Proven track record of building, mentoring, and scaling high-performing security engineering teams that ship production-grade software or security tooling
  • Hands-on experience with threat modeling, secure coding practices, and implementing authorization architectures that meet best practices
  • Ability to make challenging security roadmap decisions in the absence of complete information
  • Strong background securing cloud infrastructure technologies, including public and private cloud, virtualization, and containerization
  • Strong communication and interpersonal skills to effectively engage with diverse stakeholders, present technical concepts, and build consensus
  • Experience or desire to use GenAI to solve security challenges
Job Responsibility
Job Responsibility
  • Define and execute the vision and roadmap for the Security Engineering team with a focus on product security, infrastructure security, and detection engineering
  • Recruit, develop, and mentor a world-class team of security engineers
  • Partner deeply with Product, Engineering, Legal, and Cloud Availability teams to embed a 'security-first' culture
  • Serve as a security domain expert, providing guidance and communicating security risks and concepts to senior leadership, engineering teams, and other internal stakeholders
  • Champion and direct research into emerging threats against AI/ML systems
  • Act as a key security evangelist for the company
  • Lead and scale a global 24/7 detection and response function
What we offer
What we offer
  • Restricted Stock Units
  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
  • Employer contributions to HSA accounts
  • Paid Parental Leave
  • Paid life insurance, short-term and long-term disability
  • Teladoc
  • 401(k) with a 100% match up to 4% of salary
  • Generous paid time off and holiday schedule
  • Cell phone reimbursement
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right

Senior Security Investigator

The CyberSecurity Incident Response team (CIRT) is at the forefront of protectin...
Location
Location
United States , Seattle; San Francisco; Sunnyvale
Salary
Salary:
180000.00 - 200000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field.
  • 5+ years of experience in Security Investigations, Incident Response, Threat Hunting, or Digital Forensics within large-scale or high-risk environments.
  • Proven expertise with forensic tooling, log analysis, SIEM platforms, EDR solutions, and cloud investigation workflows (AWS/GCP/Azure).
  • Strong understanding of attacker TTPs, modern threat landscape, and frameworks like MITRE ATT&CK.
  • Hands-on experience building automation using Python, APIs, SOAR, or equivalent frameworks.
  • Ability to lead complex investigations end-to-end and communicate findings effectively to senior leadership.
  • Experience running or contributing to large cross-company security projects.
Job Responsibility
Job Responsibility
  • Lead complex security investigations end-to-end and perform deep forensic analysis across endpoints, cloud environments, identity systems, networks, and application logs to uncover root cause and attack paths.
  • Own & Build automation and tooling to accelerate evidence collection, log enrichment, triage workflows, and decision-making at global scale.
  • Improve detection and response capabilities by partnering with Threat Intelligence, Detection Engineering, and Platform teams.
  • Lead major cross-functional security initiatives that strengthen investigative readiness, digital forensics, cloud incident response, and threat-hunting capabilities.
  • Mentor and develop investigators and analysts, providing technical guidance, reviewing casework, and elevating investigative rigor.
  • Continuously evolve investigation methodology by analyzing trends, identifying gaps, and embedding lessons learned back into the security ecosystem.
What we offer
What we offer
  • Eligible to participate in Uber's bonus program
  • May be offered an equity award & other types of comp
  • Eligible for various benefits (details at provided link)
  • Fulltime
Read More
Arrow Right