{"schemaVersion":"jobsearcher.job.v1","id":"4cca438283360acdf1b8b97b","url":"https://jobsearcher.com/jobs/4cca438283360acdf1b8b97b","canonicalUrl":"https://jobsearcher.com/jobs/4cca438283360acdf1b8b97b","title":"Senior Security Engineer (Detection & Response)","description":"Scribd, Inc. is on a mission to advance human understanding. Our four products — Scribd, Slideshare, Everand™, and Fable — help billions of people across the globe move beyond access and into insight, application, and expertise.\r\nCulture at Scribd, Inc.\r\nWe support a culture where our employees can be real and be bold; where we debate and commit as we embrace plot twists; and where every employee is empowered to take action as we prioritize the customer.\r\nWe believe the best work happens when individual flexibility is balanced with meaningful community connection. Scribd Flex empowers employees to choose the workstyle and location that support their best performance, while committing to intentional in-person moments that strengthen collaboration and culture. Occasional in-person attendance is required for all Scribd, Inc. employees, regardless of location.\r\nSo what are we looking for in new team members? At Scribd, Inc., we hire for \"GRIT.\" Traditionally defined as the intersection of passion and perseverance toward long-term goals, GRIT reflects the mindset we expect from every employee. For us, it also serves as a practical framework for how we work: setting and achieving Goals, delivering Results within your role, contributing Innovative ideas and solutions, and strengthening the broader Team through collaboration and attitude.\r\nThis posting reflects an approved, open position within the organization.\r\nAbout The Team And Role\r\nThe Infrastructure Security team at Scribd is responsible for protecting our applications, platforms, and users through proactive, engineering-led security practices. As Scribd continues to scale, we are evolving our Detection & Response capabilities from reactive alerting toward a time-based security model - where speed, signal quality, and resilience are first-class design goals.\r\nAs a Senior Security Engineer focused on Detection & Response , you will help shape Scribd's long-term detection and response capabilities while owning execution within a defined domain. You'll work closely with application, infrastructure, and IT security teams - as well as our managed detection and response (MDR) partner - to design high-fidelity telemetry, operationalize our SIEM, and continuously reduce mean time to detect and respond (MTTD/MTTR).\r\nThis role is ideal for someone who enjoys building durable security systems, translating incidents into engineering improvements, and gradually expanding ownership through demonstrated impact.\r\nWhat You'll Do When You Join\r\nDesign and operationalize detection capabilities\r\nOwn and evolve detection coverage across applications, APIs, cloud infrastructure, identity, and bot/abuse surfaces\r\nTranslate threat models and real incidents into high-confidence detection patterns\r\nPartner with engineers to instrument high-quality, security-relevant telemetry at the application and platform layers\r\nOperationalize and mature the SIEM\r\nLead enrichment, normalization, and correlation of logs into actionable security signals\r\nDefine detection standards and patterns to reduce noise and improve signal quality\r\nEnsure telemetry supports both internal investigations and MDR-led monitoring\r\nImprove response speed and quality\r\nReduce MTTD and MTTR through improved triage, automation, and contextual alerting\r\nBuild and maintain runbooks, response workflows, and post-incident learning loops\r\nPartner with IT Security and the MDR provider to continuously improve detection and response outcomes\r\nAdvance runtime and behavior-based protections\r\nHelp design and deploy runtime detection and protection techniques (RASP-like approaches), especially for modern interfaces such as GraphQL\r\nSupport bot detection, abuse prevention, and DDoS mitigation in collaboration with application and platform teams\r\nLeverage deception techniques (e.g., honeypots, canaries) to detect and learn from adversary behavior\r\nDefine and track meaningful metrics\r\nImplement and track detection and response KPIs (e.g., coverage, signal quality, MTTD/MTTR)\r\nUse metrics to guide prioritization and measure improvement over time\r\nAlign measurements with frameworks such as Time-Based Security and NIST CSF\r\nValidate and improve continuously\r\nParticipate in purple-team exercises, tabletop simulations, and incident retrospectives\r\nEnsure detection, response, and protection capabilities work cohesively within targeted timeframes\r\nWe're Looking For Someone Who Has\r\n4+ years of experience in security engineering, detection engineering, incident response, or an equivalent blend of software and security engineering\r\nHands-on experience designing or operating detection and response systems (not just responding to alerts)\r\nStrong understanding of logging, telemetry, and signal design in modern cloud and application environments\r\nExperience with SIEM technologies such as Splunk, Elasticsearch, Datadog, Chronicle, or similar platforms\r\nExperience partnering with or operating alongside an MDR or SOC provider\r\nFamiliarity with threat detection and response frameworks (e.g., MITRE ATT&CK, Time-Based Security, NIST CSF)\r\nAbility to write quality code or tooling in at least one backend language (preferably Python, Ruby, or Go)\r\nStrong collaboration and communication skills, with the ability to influence engineers without formal authority\r\nNice to have\r\nExperience with bot detection, abuse prevention, or DDoS mitigation\r\nExperience instrumenting or protecting GraphQL APIs\r\nCloud security experience (AWS preferred)\r\nInfrastructure-as-Code experience (Terraform, CloudFormation)\r\nExperience building automation for alerting, triage, or response workflows\r\nExposure to purple-team or adversary simulation exercises\r\nAt Scribd, Inc., your base pay is one part of your total compensation package and is determined within a range. Our pay ranges are based on the local cost of labor benchmarks for each specific role, level, and geographic location. San Francisco is our highest geographic market in the United States.\r\nIn the state of California, the reasonably expected salary range is between $144,500 and $225,500.\r\nIn the United States, outside of California, the reasonably expected salary range is between $119,000 and $214,000.\r\nIn Canada, the reasonably expected salary range is between $151,000 CAD and $193,000 CAD.\r\nWe carefully consider a wide range of factors when determining compensation, including but not limited to experience; job-related skill sets; relevant education or training; and other business and organizational needs. The salary range listed is for the level at which this job has been scoped. In the event that you are considered for a different level, a higher or lower pay range would apply. This position is also eligible for a competitive equity ownership, and a comprehensive and generous benefits package.\r\nWorking at Scribd, Inc.\r\nAre you currently based in a location where Scribd, Inc. can employ you?\r\nEmployees must have their primary residence in or near one of the following cities. This includes surrounding metro areas or locations within a typical commuting distance:\r\nUnited States\r\nAtlanta | Austin | Boston | Dallas | Denver | Chicago | Houston | Jacksonville | Los Angeles | Miami | New York City | Phoenix | Portland | Sacramento | Salt Lake City | San Diego | San Francisco | Seattle | Washington D.C.\r\nCanada\r\nOttawa | Toronto | Vancouver\r\nMexico\r\nMexico City\r\nBenefits At Scribd, Inc.\r\nScribd Flex (flexible work model)\r\nComprehensive health, dental, and vision coverage\r\nMental health support and disability coverage\r\nGenerous paid time off, including vacation, sick time, holidays, winter break, volunteer time, and sabbaticals\r\nPaid parental leave and family support benefits\r\nRetirement matching and employee equity\r\nLearning and development programs and professional growth opportunities\r\nWellness and home office stipends\r\nComplimentary access to the Scribd, Inc. suite of products\r\nEnterprise access to leading AI tools\r\nGet to Know Scribd, Inc.\r\nAbout Scribd, Inc.\r\nLife at Scribd, Inc.\r\nWe want our interview process to be accessible to everyone. You can inform us of any reasonable adjustments we can make to better accommodate your needs by emailing accommodations@scribd.com about the need for adjustments at any point in the interview process.\r\nScribd, Inc. is committed to equal employment opportunity regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or any other characteristic protected by law. We encourage people of all backgrounds to apply, and believe that a diversity of perspectives and experiences create a foundation for the best ideas. Come join us in building something meaningful.\r\nJ-18808-Ljbffr","company":"Scribd","rawCompany":"scribd","city":"Phoenix","state":"AZ","isRemote":false,"isActive":false,"createdAt":"2026-04-09T13:19:11.720Z","occupations":[{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"}],"industries":[{"code":"513210","title":"Software Publishers","slug":"software-publishers"},{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Senior Security Engineer (Detection & Response)","description":"Scribd, Inc. is on a mission to advance human understanding. Our four products — Scribd, Slideshare, Everand™, and Fable — help billions of people across the globe move beyond access and into insight, application, and expertise.\r\nCulture at Scribd, Inc.\r\nWe support a culture where our employees can be real and be bold; where we debate and commit as we embrace plot twists; and where every employee is empowered to take action as we prioritize the customer.\r\nWe believe the best work happens when individual flexibility is balanced with meaningful community connection. Scribd Flex empowers employees to choose the workstyle and location that support their best performance, while committing to intentional in-person moments that strengthen collaboration and culture. Occasional in-person attendance is required for all Scribd, Inc. employees, regardless of location.\r\nSo what are we looking for in new team members? At Scribd, Inc., we hire for \"GRIT.\" Traditionally defined as the intersection of passion and perseverance toward long-term goals, GRIT reflects the mindset we expect from every employee. For us, it also serves as a practical framework for how we work: setting and achieving Goals, delivering Results within your role, contributing Innovative ideas and solutions, and strengthening the broader Team through collaboration and attitude.\r\nThis posting reflects an approved, open position within the organization.\r\nAbout The Team And Role\r\nThe Infrastructure Security team at Scribd is responsible for protecting our applications, platforms, and users through proactive, engineering-led security practices. As Scribd continues to scale, we are evolving our Detection & Response capabilities from reactive alerting toward a time-based security model - where speed, signal quality, and resilience are first-class design goals.\r\nAs a Senior Security Engineer focused on Detection & Response , you will help shape Scribd's long-term detection and response capabilities while owning execution within a defined domain. You'll work closely with application, infrastructure, and IT security teams - as well as our managed detection and response (MDR) partner - to design high-fidelity telemetry, operationalize our SIEM, and continuously reduce mean time to detect and respond (MTTD/MTTR).\r\nThis role is ideal for someone who enjoys building durable security systems, translating incidents into engineering improvements, and gradually expanding ownership through demonstrated impact.\r\nWhat You'll Do When You Join\r\nDesign and operationalize detection capabilities\r\nOwn and evolve detection coverage across applications, APIs, cloud infrastructure, identity, and bot/abuse surfaces\r\nTranslate threat models and real incidents into high-confidence detection patterns\r\nPartner with engineers to instrument high-quality, security-relevant telemetry at the application and platform layers\r\nOperationalize and mature the SIEM\r\nLead enrichment, normalization, and correlation of logs into actionable security signals\r\nDefine detection standards and patterns to reduce noise and improve signal quality\r\nEnsure telemetry supports both internal investigations and MDR-led monitoring\r\nImprove response speed and quality\r\nReduce MTTD and MTTR through improved triage, automation, and contextual alerting\r\nBuild and maintain runbooks, response workflows, and post-incident learning loops\r\nPartner with IT Security and the MDR provider to continuously improve detection and response outcomes\r\nAdvance runtime and behavior-based protections\r\nHelp design and deploy runtime detection and protection techniques (RASP-like approaches), especially for modern interfaces such as GraphQL\r\nSupport bot detection, abuse prevention, and DDoS mitigation in collaboration with application and platform teams\r\nLeverage deception techniques (e.g., honeypots, canaries) to detect and learn from adversary behavior\r\nDefine and track meaningful metrics\r\nImplement and track detection and response KPIs (e.g., coverage, signal quality, MTTD/MTTR)\r\nUse metrics to guide prioritization and measure improvement over time\r\nAlign measurements with frameworks such as Time-Based Security and NIST CSF\r\nValidate and improve continuously\r\nParticipate in purple-team exercises, tabletop simulations, and incident retrospectives\r\nEnsure detection, response, and protection capabilities work cohesively within targeted timeframes\r\nWe're Looking For Someone Who Has\r\n4+ years of experience in security engineering, detection engineering, incident response, or an equivalent blend of software and security engineering\r\nHands-on experience designing or operating detection and response systems (not just responding to alerts)\r\nStrong understanding of logging, telemetry, and signal design in modern cloud and application environments\r\nExperience with SIEM technologies such as Splunk, Elasticsearch, Datadog, Chronicle, or similar platforms\r\nExperience partnering with or operating alongside an MDR or SOC provider\r\nFamiliarity with threat detection and response frameworks (e.g., MITRE ATT&CK, Time-Based Security, NIST CSF)\r\nAbility to write quality code or tooling in at least one backend language (preferably Python, Ruby, or Go)\r\nStrong collaboration and communication skills, with the ability to influence engineers without formal authority\r\nNice to have\r\nExperience with bot detection, abuse prevention, or DDoS mitigation\r\nExperience instrumenting or protecting GraphQL APIs\r\nCloud security experience (AWS preferred)\r\nInfrastructure-as-Code experience (Terraform, CloudFormation)\r\nExperience building automation for alerting, triage, or response workflows\r\nExposure to purple-team or adversary simulation exercises\r\nAt Scribd, Inc., your base pay is one part of your total compensation package and is determined within a range. Our pay ranges are based on the local cost of labor benchmarks for each specific role, level, and geographic location. San Francisco is our highest geographic market in the United States.\r\nIn the state of California, the reasonably expected salary range is between $144,500 and $225,500.\r\nIn the United States, outside of California, the reasonably expected salary range is between $119,000 and $214,000.\r\nIn Canada, the reasonably expected salary range is between $151,000 CAD and $193,000 CAD.\r\nWe carefully consider a wide range of factors when determining compensation, including but not limited to experience; job-related skill sets; relevant education or training; and other business and organizational needs. The salary range listed is for the level at which this job has been scoped. In the event that you are considered for a different level, a higher or lower pay range would apply. This position is also eligible for a competitive equity ownership, and a comprehensive and generous benefits package.\r\nWorking at Scribd, Inc.\r\nAre you currently based in a location where Scribd, Inc. can employ you?\r\nEmployees must have their primary residence in or near one of the following cities. This includes surrounding metro areas or locations within a typical commuting distance:\r\nUnited States\r\nAtlanta | Austin | Boston | Dallas | Denver | Chicago | Houston | Jacksonville | Los Angeles | Miami | New York City | Phoenix | Portland | Sacramento | Salt Lake City | San Diego | San Francisco | Seattle | Washington D.C.\r\nCanada\r\nOttawa | Toronto | Vancouver\r\nMexico\r\nMexico City\r\nBenefits At Scribd, Inc.\r\nScribd Flex (flexible work model)\r\nComprehensive health, dental, and vision coverage\r\nMental health support and disability coverage\r\nGenerous paid time off, including vacation, sick time, holidays, winter break, volunteer time, and sabbaticals\r\nPaid parental leave and family support benefits\r\nRetirement matching and employee equity\r\nLearning and development programs and professional growth opportunities\r\nWellness and home office stipends\r\nComplimentary access to the Scribd, Inc. suite of products\r\nEnterprise access to leading AI tools\r\nGet to Know Scribd, Inc.\r\nAbout Scribd, Inc.\r\nLife at Scribd, Inc.\r\nWe want our interview process to be accessible to everyone. You can inform us of any reasonable adjustments we can make to better accommodate your needs by emailing accommodations@scribd.com about the need for adjustments at any point in the interview process.\r\nScribd, Inc. is committed to equal employment opportunity regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or any other characteristic protected by law. We encourage people of all backgrounds to apply, and believe that a diversity of perspectives and experiences create a foundation for the best ideas. Come join us in building something meaningful.\r\nJ-18808-Ljbffr","datePosted":"2026-04-09T13:19:11.720Z","dateModified":"2026-04-09T13:19:11.720Z","hiringOrganization":{"@type":"Organization","name":"Scribd","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Phoenix","addressRegion":"AZ","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"4cca438283360acdf1b8b97b"},"url":"https://jobsearcher.com/jobs/4cca438283360acdf1b8b97b"}}