CrawlJobs Logo

Staff Detection and Response Engineer

Australia, Sydney · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

Healthcare needs a better rhythm: one that keeps care continuous and deeply human. Heidi is building an AI Care Partner that works alongside clinicians to make that possible. We’re a team of doctors, engineers, designers, researchers, and creatives building tools that help clinicians stay focused on what matters most: their patients. In just 18 months, Heidi has given back more than 18 million hours to healthcare professionals — supporting 73 million patient visits in 116 countries. Today, more than two million patient visits each week are powered by Heidi worldwide. Backed by nearly $100 million in funding, we’re growing in the US, UK, Canada, and Europe, partnering with leading health systems including the NHS, Beth Israel Lahey Health, and Monash Health.

Job Responsibility

  • Build and maintain high-signal detections across cloud, infrastructure, and application layers
  • Improve logging and audit coverage: what we collect, how we normalise it, how long we retain it, and how we query it
  • Develop response automation: playbooks, orchestration, and repeatable containment and remediation steps
  • Improve investigative workflows for incidents: evidence handling, timelines, and actionable learnings
  • Partner with platform and application teams to add the right security telemetry and abuse signals
  • Run threat hunting cycles that generate concrete improvements to detections and controls
  • Contribute to the wider security program by closing the loop between incidents, threat models, detection coverage, and preventative controls

Requirements

  • Owns detection and response outcomes end-to-end, including prioritisation and roadmap decisions
  • Strong domain understanding of attacker behaviour, audit logging, and detection trade-offs (coverage vs noise)
  • Comfortable building systems and workflows that scale (detection-as-code, automation, reliable operations)
  • Can work independently during incidents, coordinate across teams, and drive follow-up improvements
  • Clear communicator who can translate technical findings into priorities and preventative work
  • Senior/staff-level capability, expressed as autonomy, depth, and ability to scale impact

What we offer

  • Flexible hybrid working environment, with 3 days in the office
  • A generous personal development budget of $500 per annum
  • Learn from some of the best engineers and creatives, joining a diverse team
  • Become an owner, with shares (equity) in the company
  • The rare chance to create a global impact as you immerse yourself in one of Australia’s leading healthtech startups
  • If you have an impact quickly, the opportunity to fast track your startup career

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Staff Detection and Response Engineer

8 matching positions

Staff Detection and Response Engineer

The Staff Detection and Response Engineer is a critical technical role responsib...
Location
Location
India
Salary
Salary:
Not provided
alpha-sense.com Logo
AlphaSense
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years in security operations with 3+ years in detection engineering, including deep expertise in creating high-fidelity rules (SIGMA, YARA-L, KQL, SPL)
  • Proven track record of building detection strategies across SIEM, EDR, and Cloud platforms, grounded in the MITRE ATT&CK framework
  • Expert knowledge of SOAR platforms (e.g., Tines, Splunk SOAR, Cortex XSOAR), architecture, and complex playbook development
  • Proven experience designing and implementing SOAR platform architecture from concept to production
  • Advanced scripting and automation development skills in Python (required) for API integrations and security tool orchestration
  • Strong background in threat hunting methodology, hypothesis development, and campaign execution, with experience leading or co-leading hunting programs
  • Proficiency with data analysis, anomaly detection, and hands-on experience with hunting tools like Jupyter Notebooks, Osquery, and Velociraptor
  • Deep understanding of attack techniques, lateral movement, persistence mechanisms, and post-exploitation TTPs across Windows, Linux, and macOS
  • Familiarity with security frameworks including MITRE ATT&CK, PICERL, NIST CSF, and Detection Maturity Models, and incident response best practices
  • Proven ability to lead technical initiatives, mentor team members, and communicate complex technical concepts to diverse audiences
Job Responsibility
Job Responsibility
  • Design, implement, and maintain advanced detection rules and correlation logic across SIEM , EDR, and Cloud platforms (AWS, GCP)
  • Lead detection strategy and architecture aligned with the Detection Quality frameworks
  • Write high-fidelity detection rules using languages like SIGMA and YARA-L
  • Conduct deep log source analysis, perform threat modeling, adversary emulation, and maintain MITRE ATT&CK mapping coverage
  • Conduct detection gap analysis to identify coverage opportunities across the kill chain
  • Create and maintain detection playbooks, runbooks, and comprehensive documentation
  • Perform detection quality assessments and continuous improvement initiatives
  • Develop complex automated response playbooks for multi-stage incidents spanning multiple security tools
  • Integrate security tools via APIs (SIEM, EDR, MDM, CASB, ITSM, threat intelligence platforms)
  • Create automated enrichment pipelines incorporating threat intelligence, asset context, and user behavior analytics
Read More
Arrow Right

Staff Detection Engineer

Crusoe Security & Compliance is hiring a Senior Detection Engineer to play a cri...
Location
Location
United States , San Francisco
Salary
Salary:
165000.00 - 200000.00 USD / Year
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6+ years in cybersecurity, with a focus on detection and response
  • Technical proficiency with protection of on-premise computing environments and proficiency with one or more major cloud computing environments
  • Strong expertise in incident handling and forensic investigation
  • Strong knowledge of the cyber threat landscape and ability to articulate and incorporate understanding of major threat categories, motivations, and intent of adversaries
  • Automation-first mindset and demonstrated expertise in mentoring and training peers in security engineering skill sets
  • Experience in at least one programming language (Python, Go, C, C++) or deep expertise using low-code automation tools or SOAR platforms
  • Exceptional collaboration and communication skills, with the ability to engage with partners and stakeholders from various perspectives and technical understanding
  • Familiarity with modern infrastructure tools, such as Docker, Kubernetes, Ansible, Cloud Formation, Terraform
  • Experience building and scaling open source security observability solutions
  • Experience with Unix/Linux environments
Job Responsibility
Job Responsibility
  • Develop and execute a comprehensive security operations strategy that aligns with organizational goals
  • Evaluate and implement emerging security technologies and methodologies
  • Partner with stakeholders and cross-functional teams (Engineering, Product, SRE, IT, Legal)
  • Design, implement, and fine-tune advanced detection mechanisms
  • Continuously tune alerting rules to reduce false positives and enhance our signal-to-noise ratio
  • Perform forensics and lead response efforts during security incidents
  • Drive the advancement and growth of detection and automation initiatives
  • Manage security event monitoring, management, response workflows, and tasks
  • Improve security operations by developing measurement capabilities and metrics
  • Author comprehensive runbooks, write automation scripts, and build SOAR capabilities
What we offer
What we offer
  • Restricted Stock Units
  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
  • Employer contributions to HSA accounts
  • Paid Parental Leave
  • Paid life insurance, short-term and long-term disability
  • Teladoc
  • 401(k) with a 100% match up to 4% of salary
  • Generous paid time off and holiday schedule
  • Cell phone reimbursement
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right

Senior Staff Engineer (Backend) - Road Safety/Insurance

Uber's Road Safety and Insurance Engineering teams sit at the intersection of re...
Location
Location
United States , Seattle; San Francisco; Sunnyvale
Salary
Salary:
267000.00 - 297000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS or equivalent in Computer Science, Engineering, Mathematics, or a related field
  • Proven experience designing and building large-scale distributed systems serving millions of users
  • Strong computer science fundamentals: data structures, algorithms, system design, and performance optimization
  • Demonstrated ability to lead complex projects across multiple teams or organizations
Job Responsibility
Job Responsibility
  • Lead large, cross-team technical initiatives collaborating with multiple platform teams, from early design through production rollout
  • Builds strategic relationships with internal stakeholders, partner teams and external partners to deliver on organizational goals
  • Design and evolve backend systems that ingest, process, and analyze high-volume sensor and telematics data
  • Partner closely with machine learning and data science teams to productionize ML and signal-processing models for crash detection, driving behavior detection etc
  • Drive architectural decisions for low-latency streaming pipelines, distributed services, and offline/online data processing systems
  • Anticipate and address scalability, reliability, and data quality challenges 1–2 years ahead, influencing platform direction proactively
  • Set and role-model engineering best practices around system design, code quality, observability, incident response, and on-call excellence
  • Mentor Senior engineers and Staff Engineers, raising the technical bar across the org
  • Represent the org in company-wide technical discussions, design reviews, and architecture forums
What we offer
What we offer
  • Bonus program
  • Equity award
  • 401(k) plan
  • Various benefits (details at https://jobs.uber.com/en/benefits)
  • Fulltime
Read More
Arrow Right

Staff Engineer – Vulnerability Management Automation

GEICO is seeking an experienced Staff Engineer with a passion for building high ...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
110000.00 - 230000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong software engineering background building production services and tooling (Python or Go preferred
  • TypeScript a plus)
  • Deep knowledge of Linux and Windows Server administration and patching in enterprise environments
  • Hands‑on experience with vulnerability scanners and their APIs (Tenable/Nessus, Qualys, Rapid7) and risk models (CVSS, KEV, EPSS)
  • Proficiency with configuration management and IaC (Ansible/Puppet/Chef/Salt
  • Terraform/Pulumi/Crossplane, Helm/Kustomize)
  • Experience with event‑driven and batch data pipelines (e.g., Kafka/SNS/SQS/PubSub), relational data stores, and caching
  • Familiarity with cloud (AWS/Azure/GCP), containers/Kubernetes, and image pipelines (e.g., Packer)
  • Solid understanding of authN/authZ, secrets management, and least‑privilege access for platforms and automation
  • Excellence in observability and reliability practices (OpenTelemetry/Prometheus/Grafana) with an SLO mindset
Job Responsibility
Job Responsibility
  • Define the technical roadmap for vulnerability management and patch automation platforms
  • Establish standards, patterns, and paved roads for scanning, triage, remediation, and verification
  • Mentor engineers across Security and Platform teams on software and systems design best practices
  • Drive design reviews, architecture decisions, and quality gates for reliability and security
  • Design and implement services for asset/CMDB enrichment, risk scoring, and intelligent targeting
  • Build controllers/schedulers for maintenance windows, deployment rings/canaries, pre/post checks, automated backoff/rollback, and progressive delivery
  • Deliver self‑service CLIs/SDKs and internal UIs to request, schedule, and track remediation
  • Implement idempotent, policy‑driven workflows for patching and baseline enforcement across Windows and Linux
  • Integrate with image pipelines to shift‑left patching and hardening
  • Integrate scanner data and external intel into unified pipelines
What we offer
What we offer
  • Comprehensive Total Rewards program
  • 401K savings plan with 6% match
  • performance and recognition-based incentives
  • tuition assistance
  • mental healthcare
  • fertility and adoption assistance
  • workplace flexibility
  • GEICO Flex program (work from anywhere in the US for up to four weeks per year)
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, CSIRT

As a Staff Security Engineer within our CSIRT Team, you will be accountable for ...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
deliveryhero.com Logo
Delivery Hero
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of broad cybersecurity experience with a deep understanding of core security fundamentals, coupled with 5+ years of dedicated experience in a SOC or CSIRT environment
  • Proven track record acting as a Security Incident Commander
  • Mastery of the full incident lifecycle and hands-on playbook creation for complex, high-availability hybrid-cloud environments, distributed microservices, and platforms processing vast amounts of PII and payment data
  • Operational expertise with SIEM, EDR, Cloud Security platforms, SOAR, and WAF/DDoS protection solutions
  • Advanced proficiency in writing production-quality code (e.g., Python, Go, Rust) to build scalable in-house solutions
  • Hands-on experience securing and responding to incidents across public cloud platforms (AWS, GCP) and cloud-native technologies like Kubernetes, Docker, and Infrastructure-as-Code (e.g., Terraform)
  • Familiarity with Git/GitHub usage, CI/CD systems, and modern SecOps workflows
  • An exceptional communicator with the ability to influence cross-functional stakeholders
Job Responsibility
Job Responsibility
  • Incident Commander: Serve as the single accountable leader during active responses for high-severity incidents, directing investigative focus from detection through recovery while maintaining a calm and decisive demeanor under pressure
  • Post-Incident Reviews & Remediation: Lead blameless post-incident reviews to ensure continuous improvement, durable engineering solutions, and systemic resilience
  • Stakeholder Communication: Serve as the primary interface to stakeholders during critical security incidents, translating complex technical realities into clear risk, impact, and decision frameworks
  • Engineering-Led Response & Automation: Design and develop in-house solutions, automated workflows, and scalable systems to eliminate repetitive processes, reduce triage time, and continuously improve the overall quality and efficiency of our security incident response operations
  • Mentorship & Leadership: Act as a hands-on technical leader and role model, actively mentoring teams and individuals within your domain
  • Metrics & Strategic Visibility: Have a Data-Driven Strategic mindset to define, track, and improve core operational metrics (MTTD, MTTR) to identify systemic gaps and propose strategic, long-term security investments
  • Organizational Readiness & Tabletop Exercises: Proactively design and facilitate complex, realistic tabletop simulations and purple team engagements
  • On-Call: Participate in a predictable on-call rotation as an Incident Responder
What we offer
What we offer
  • Hybrid working model
  • 27 days holiday
  • 1.000 € Educational Budget
  • Language Courses
  • Parental Support
  • access to the Udemy Business platform
  • Health Checkups
  • Mindfulness and Gym & Bicycle Subsidy
  • Digital Meal Vouchers
  • Food Vouchers
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, Enterprise Security Operations

We're searching for a Staff Security Engineer, Enterprise Security Operations to...
Location
Location
United States , Detroit
Salary
Salary:
171000.00 - 273000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of hands-on experience in enterprise security operations, security platform administration, or a senior SOC engineering role
  • Expert-level proficiency administering and operating at least two enterprise security platforms (e.g., CrowdStrike, SentinelOne, Splunk, Panther, Sentinel, Jamf, Kandji/Iru, Puppet, WorkspaceONE, Intune, Zscaler, Okta, Proofpoint, Wiz, osquery)
  • Demonstrated ability to tune and optimize security platforms beyond out-of-the-box configurations
  • Strong log analysis and threat hunting skills
  • Experience conducting thorough incident investigations
  • Ability to assess security control effectiveness
  • Comfort working under pressure in ambiguous, fast-moving situations with competing priorities
Job Responsibility
Job Responsibility
  • Own the operational health, configuration, and continuous improvement of Aurora's enterprise security platform stack
  • Develop and refine detection rules, correlation logic, and alert policies
  • Conduct proactive threat hunting across Aurora's security telemetry
  • Serve as the deepest internal expert on Aurora's enterprise security tooling
  • Participate in the team's on-call rotation, leading deep-dive investigations into security alerts and incidents
  • Continuously audit and validate that existing security controls are configured correctly
  • Maintain operational runbooks, detection documentation, and platform configuration records
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Benefits
  • Fulltime
Read More
Arrow Right

Staff Software Engineer - DevOps/VCU-CCU Infotainment Systems

At General Motors, we are building software-defined vehicle platforms that will ...
Location
Location
United States , Austin
Salary
Salary:
189300.00 - 290700.00 USD / Year
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in software engineering, DevOps, build engineering, platform engineering, or release engineering roles aligned with staff-level scope at GM
  • Proven experience leading large technical initiatives across multiple teams from design through production rollout
  • Strong experience designing and operating scalable CI/CD systems and developer platforms
  • Deep knowledge of build and automation tooling such as Jenkins, GitHub Actions, GitLab CI, or similar
  • Experience with embedded Linux build systems, cross-compilation environments, or complex platform build pipelines
  • Strong programming and scripting skills in languages such as Python, Bash, Groovy, or similar
  • Experience with cloud and container technologies such as Docker, Kubernetes, and at least one major cloud platform
  • Hands-on experience with observability tooling for metrics, logging, tracing, dashboards, and alerting
  • Strong architectural thinking across APIs, workflows, integrations, automation, and system reliability
  • Demonstrated ability to mentor engineers, influence architecture, and drive execution in a matrixed organization
Job Responsibility
Job Responsibility
  • Define technical strategy and architecture for DevOps, CI/CD, and build platforms supporting VCU/CCU infotainment systems across multiple vehicle programs
  • Design and optimize scalable CI/CD pipelines for embedded Linux (Yocto) builds, including build orchestration, test automation, artifact management, and release workflows
  • Improve build performance and reliability through distributed build systems (BuildBarn/RBE), caching strategies, and infrastructure optimization
  • Automate release processes including branching strategy, versioning, artifact promotion, quality gates, and compliance checks
  • Build self-service platforms, tooling, and dashboards that reduce manual effort and accelerate delivery for engineering teams
  • Improve developer workflows through GitHub automation, PR validation, smoke testing, and streamlined feedback loops
  • Establish end-to-end observability and operational excellence using metrics, logs, dashboards, alerting, incident response, and root cause analysis
  • Leverage AI/ML techniques for predictive build failures, intelligent test selection, resource optimization, anomaly detection, and proactive incident prevention
  • Lead cross-functional initiatives from concept to production, including architecture reviews, technical design discussions, and communicating trade-offs to stakeholders
  • Mentor engineers across DVE on CI/CD best practices, build engineering, and infrastructure patterns
What we offer
What we offer
  • Incentive pay program offering payouts based on company performance, job level, and individual performance
  • Company vehicle evaluation program (upon successful completion of a motor vehicle report review)
  • Relocation benefits
  • Fulltime
Read More
Arrow Right

Staff Software Engineer – Secondary Driving System

At General Motors, our Embodied AI teams are redefining what’s possible in drive...
Location
Location
United States , Sunnyvale
Salary
Salary:
218800.00 - 335300.00 USD / Year
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS, MS, or PhD in Computer Science, Robotics, Electrical/Mechanical Engineering, or a related field
  • or equivalent practical experience
  • 8+ years of professional software engineering experience building production systems in robotics, autonomous vehicles, or other complex real‑time/control systems, including significant experience in perception and/or prediction
  • Strong proficiency in modern C++ (e.g., C++14/17 or later) in large, multi‑contributor codebases
  • experience using Python for tooling, data analysis, and ML experimentation
  • Demonstrated experience leading technical design and delivery of perception, tracking, or prediction systems in real‑time environments, including: Multi‑sensor fusion across camera, radar, and/or lidar (e.g., object‑level fusion, occupancy/freespace fusion, early/late fusion architectures)
  • Classical computer vision and geometric algorithms (feature extraction, multi‑view geometry, stereo, SfM, SLAM/visual odometry)
  • Multi‑object tracking (Kalman/extended/unscented filters, track‑to‑track fusion, track lifecycle management)
  • Motion prediction for road users (analytical kinematic models, maneuver‑based prediction, or learned trajectory forecasting models)
  • Proven track record of delivering reliable, high‑quality robotics or autonomous driving software to production, including: Testing strategies (simulation, HIL, scenario‑based testing, regression suites)
Job Responsibility
Job Responsibility
  • Serve as a technical lead for SDS software across multiple components of the stack, setting direction for algorithms, architectures, and system interfaces across features and releases
  • Own the end‑to‑end technical strategy for key SDS behaviors and features, spanning perception/prediction integration, planning, controls, and system‑level interactions
  • Balance hands‑on technical work with cross‑team leadership: you will still design and implement critical components in modern C++, while also guiding other senior and mid‑level engineers to deliver at scale
  • Collaborate closely with experts in perception, tracking, prediction, state estimation, localization, mapping, planning, controls, systems engineering, and safety to deliver robust, fail‑operational behaviors for Super Cruise and future products
  • Define technical vision & architecture
  • Set the technical direction for SDS software components with a focus on correctness, robustness, and predictable runtime behavior under tight latency and compute budgets
  • Architect scalable, modular multi‑sensor perception pipelines for camera, radar, and lidar, including detection, classification, lane/road feature extraction, freespace/occupancy, and environmental context
  • Establish and evolve interfaces and contracts between perception/prediction and upstream/downstream components (state estimation, localization, mapping, planning, controls, autonomy management)
  • Lead high‑impact projects
  • Lead design and delivery of multi‑object tracking systems (e.g., Kalman/extended/unscented filters, IMM, probabilistic data association, track lifecycle management) that provide stable, high‑quality tracks under real‑world noise and edge cases
What we offer
What we offer
  • medical
  • dental
  • vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • tuition assistance programs
  • Fulltime
Read More
Arrow Right