Senior Detection & Response Engineer

Remitly, Inc. seeks a Senior Detection & Response Engineer to design, implement, and manage enterprise-level security technologies and controls to detect, investigate, and respond to cyber threats. Define and execute threat detection and response strategies aligned with the organization’s overall risk posture and business objectives. Build and operationalize detection models, automation workflows, and response pipelines to identify anomalies and mitigate threats at scale. Create, refine, and maintain threat detection analytics to ensure high MITRE ATT&CK coverage while minimizing false positives. Develop and execute hypothesis-driven threat hunts across corporate and cloud environments using adversary tactics, techniques, and procedures (TTPs) to search for evidence of malicious activity. Monitor for security incidents, investigate suspicious activity, and coordinate cross-functional response and recovery efforts to strengthen organizational resilience. Perform forensic investigations to determine root causes, assess impact, and recommend measures to prevent recurrence. Apply foundational large language models (LLMs) and AI-driven analytics to forecast emerging threats and enhance detection and response capabilities. Operationalize threat intelligence solutions in partnership with the Threat Intelligence team to develop detections, response playbooks, and enrichment pipelines that enhance the effectiveness of the Detection and Response (DART) program. Position requires a Master’s degree in Computer Science, Engineering, Information Systems, Cybersecurity, or a related field and 4 years of experience with cybersecurity and systems engineering within enterprise environments. Experience must also include 1 year with each of the following: developing and implementing threat detection and response solutions in cloud-first environments (including IaaS, PaaS, and SaaS); applying the MITRE ATT&CK and Cyber Kill Chain framework to cybersecurity techniques and procedures to identify and prevent threats; developing automated detection analytics and threat hunting methodologies using scripting languages (including Python, PowerShell, and Bash), APIs, and orchestration tools; implementing incident response automation through SOAR platforms (including Cortex XSOAR and Phantom) and custom code to contain and remediate threats; utilizing Security Information and Event Management (SIEM) platforms (including Splunk, ELK/Elastic Stack, QRadar, and Azure Sentinel) to collect, correlate, and analyze security events; deploying and managing EDR/XDR solutions (including CrowdStrike Falcon, Microsoft Defender, and SentinelOne); integrating threat intelligence platforms (TIPs) (including Recorded Future, Anomali, and MISP); developing and tuning custom detection content using YARA and Sigma rules for proactive detection; leveraging cloud-native security services across AWS, Azure, and GCP; and conducting forensic and malware analysis to identify root causes and improve future detection and response effectiveness. Telecommuting is available from anywhere in the United States based on manager approval. Job Location: Seattle, WA Rate of Pay: $188,000.00 - $235,000.00 per year Any interested candidate should email resume and cover letter identifying the job opportunity by Req ID [R_106122] to GMI@remitly.com, or apply online at https://careers.remitly.com and enter the Req ID when prompted. Remitly, Inc. is an EEO employer. #LI-DNI #FB-DNI #IN-DNI #TW-DNI #GD-DNI