Apply on Employer Site

Chainlink Labs · 1 day ago

Security Response Engineer, Detection Engineering

United States

Full-time

Remote

Senior Level

Chainlink Labs is a leading oracle platform powering decentralized finance (DeFi) and bringing capital markets onchain. The Security Response Engineer will lead detection engineering efforts, design logging and alerting pipelines, and collaborate with teams to enhance security measures.

BlockchainInternetSoftwareWeb3

Responsibilities

Own detection engineering as a product: set the roadmap and drive measurable outcomes

Build and run telemetry pipelines

Establish team-wide standards: lead the standardization of internal security tooling, infrastructure deployment strategy, and access methods

Proactively identify and implement areas of improvement and modernization

Shape our EDR/SIEM strategy: act as a key stakeholder in evaluations, migrations, and architecture decisions

Join the team's on-call rotation to assist in writing, tuning, and triaging detections, as well as coordinating the response to security incidents

Qualification

Detection engineeringSecurity infrastructure managementTelemetry pipelinesCoding PythonCoding GoCoding RustDetections-as-code (Sigma)Blockchain/Web3 threatsOperational rigorOpen-source contributionsCross-functional collaboration

Required

Experience leading detection engineering efforts (logging pipelines, enrichment/automation, quality monitoring): owned the roadmap and delivered measurable outcomes

Hands‑on experience managing and deploying security infrastructure and tooling (IaC, containerization, remote access)

Track record of authoring and tuning detections across endpoint, cloud, identity, and/or network telemetry

Operational rigor: served in a security on‑call rotation and acted as incident coordinator for high‑severity events with multiple external stakeholders

Led a cross-functional initiative to ship a security-related capability

Previous coding experience (Python, Go, Rust, or similar)