Sr. Security Engineer, Threat Detection and Respon
Remote
Posted on Jul 3, 2026
Our client is currently seeking a Sr. Security Engineer, Threat Detection and Respon
The Threat Detection and Response team (TDR) at Airbnb is focused on automating security detection, responding to security incidents, and working with partner teams to build capabilities that support the incident lifecycle. This is the front-line team that detects, investigates, and responds to internal & external security threats and malicious activity.
This is a key role to help define and execute our vision for threat detection and incident response capabilities and process while mentoring other team members. As a senior engineer on the team, you will have direct impact building, optimizing, and growing securing capabilities as you help deliver world-class threat detection and incident response.
The Difference You Will Make:
You will be a key member of our growing Threat Detection & Response (TDR) team.
You will get an opportunity to define and execute on novel approaches to detecting, containing and mitigating threats and incidents.
You will partner with cross-functional partners across the company to improve the overall security of Airbnb driven by learnings and root cause analysis of investigations and incidents resulting in removal of entire classes of problems.
A Typical Day:
Perform investigations of security incidents using your knowledge of digital forensics and data analytics.
Use your coding, data analytics and investigation skills to hunt, detect and respond to threats.
Build automation and detection models to support identification of anomalous activity and response activities to mitigate threats at scale.
Hunt for threats in our corporate and production environments to proactively identify anomalous activity.
Work side by side with our engineering teams to build advanced detection solutions to help keep systems and information safe, and partner closely with partner teams to carry out complex investigations.
Identify gaps in our infrastructure, and work with business partners to gain visibility through logging and detection.
Collaborate well with cross-functional partner teams, such as Legal, Privacy, and Engineering for efficient, large-scale response.
Skills:
Your Expertise:
5+ years of hands-on in-depth knowledge and technical experience in security operations including investigations, incident response, incident management, digital forensics, threat intelligence, threat hunting, and/or detection engineering.
Proficiency in Python or other scripting language. We also use SQL and Pandas frequently.
Familiarity with Elasticsearch is preferred.
Self-motivated and creative problem-solver able to work independently with minimal guidance.
Ability to lead people in complex, ambiguous situations through influence and not authority.
Ability to work calmly and collaboratively in critical high-stress situations with expediency.
Outstanding organizational, prioritization, and multitasking skills.
Knowledge and familiarity of the Cyber Kill Chain Framework and MITRE ATT&CK Framework and how these apply to the threat landscape.
Experience automating security detection and response.
Experience in AWS services (EC2, S3, Lambda, RDS) preferred
We are not focused on specific tools but we often use Python, AWS, SQL, and more.
By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively “Judge”) to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.