Senior Detection and Response Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Northwood · 18 hours ago

Senior Detection and Response Engineer

positionTorrance, CA
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

Northwood is a modern space infrastructure company focused on connecting space and Earth. They are seeking a Senior Detection and Response Engineer to build and operate their security operations center, hunt threats across distributed satellite infrastructure, and lead incident response for critical systems.

AerospaceHardwareSatellite Communication
check
Diversity & InclusionbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead incident response and forensics - Own security incidents from detection through resolution across globally distributed ground stations and cloud infrastructure. Conduct digital forensics, malware analysis, and coordinate response efforts for incidents impacting national security missions
Build and tune detection rules - Develop custom detection logic for SIEM platforms that can identify threats specific to satellite communications and ground station operations. Create behavioral analytics and threat hunting queries for distributed infrastructure
Operate 24/7 security monitoring - Monitor security events across AWS multi-cloud environments, Linux-based ground station systems, and satellite communication networks. Triage alerts, investigate suspicious activity, and escalate critical threats
Hunt threats across space infrastructure - Proactively search for advanced persistent threats targeting satellite ground stations, RF communications, and space-based assets. Develop threat hunting methodologies for unique attack vectors in space communications
Create incident response playbooks - Build runbooks for security incidents specific to satellite ground stations and space communications. Develop escalation procedures and communication protocols for government customers and mission-critical operations
Analyze threat intelligence - Research adversary tactics targeting aerospace and defense infrastructure. Integrate threat feeds into detection systems and brief stakeholders on emerging threats to space communications
Build security automation - Develop Python/PowerShell scripts for automated incident response, threat hunting workflows, and security orchestration across distributed ground station networks

Qualification

SOC operations experienceSIEM platforms expertiseDigital forensics skillsPython/PowerShell proficiencyEndpoint security experienceLinux forensics skillsThreat intelligence knowledgeCloud security monitoringAerospace/defense backgroundThreat hunting experienceRF communications knowledgeIncident response certificationsSOAR workflows experienceGovernment reporting familiarity

Required

5+ years of hands-on SOC operations, incident response, or threat hunting experience
Experience with SIEM platforms (Splunk, Sentinel, Chronicle) including custom rule development and advanced search techniques
Digital forensics and malware analysis skills with tools like Volatility, YARA, and hex editors
Proficiency in Python, PowerShell, or similar languages for security automation and threat hunting
Experience with endpoint security platforms (CrowdStrike, SentinelOne) and network security monitoring
Strong Linux forensics and log analysis skills across distributed systems
Knowledge of threat intelligence frameworks (MITRE ATT&CK, Diamond Model) and IOC analysis
Ability to obtain and maintain TS/SCI clearance

Preferred

Experience with cloud security monitoring in AWS, Azure, or multi-cloud environments
Background in aerospace, defense, or critical infrastructure security operations
Experience with threat hunting in air-gapped or highly regulated environments
Knowledge of RF communications, satellite systems, or space-based asset security
Certifications such as GCIH, GCFA, GNFA, or similar incident response credentials
Experience building security orchestration and automated response (SOAR) workflows
Familiarity with government incident reporting requirements and procedures

Company

Northwood

twittertwittertwitter
company-logo
Northwood was founded by Bridgit Mendler, Griffin Cleverly, and Shaurya Luthra with the mission to expand access to space by transforming satellite backhaul infrastructure.
dateFounded in 2023
location
Torrance, California, USA
people-size11-50 employees
web-link
https://www.northwoodspace.io

Funding

Current Stage
Early Stage
Total Funding
$36.4M
Key Investors
Harvard Innovation Labs
2025-04-22Series A· $30M
2024-02-19Seed· $6.3M
2023-02-08Grant· $0.1M

Leadership Team

leader-logo
Bridgit Mendler
CEO – Cofounder
linkedin
G
Griffin Cleverly
Co-Founder, CTO
linkedin

Recent News

TechCrunch
Space defense, gravity, and connectivity with Bridgit Mendler, Even Rogers, and Max Haot at TechCrunch Disrupt 2025
2025-10-03
Satellite Today
Northwood Space Tests Phased Array Ground System
2025-07-11
Ars Technica - All content
Northwood Space successfully tests second-generation phased array antenna
2025-07-10
Company data provided by crunchbase