Skip to content
ApolloApolloUnited States

Engineering Manager, Security Detection & Response

Lead a remote Security Detection & Response team at Apollo.io. Hands-on manager responsible for detection engineering, incident response, Panther content, Python automation, AI triage workflows, and cross-functional security improvements in a cloud/SaaS environment. Requires 5+ years security engineering experience and 2+ years people management.

225k – 282k
Remote7+ YOESecurity Engineering

About the role

Key Responsibilities

Security Incident Leadership & Response

  • Own and continuously improve end-to-end detection, investigation, response, post-incident review, and threat intelligence-informed improvement processes, including AI-assisted triage and investigation workflows.
  • Lead complex and high-severity incidents with clear decision-making, effective stakeholder communication, and accountable follow-through on remediation.
  • Stay technically engaged in investigations across cloud infrastructure, SaaS platforms, corporate systems, user behavior, and abuse scenarios, and translate incident learnings, platform changes, and threat trends into Security Detection & Response priorities.

Security Observability, Detection Engineering, Automation & AI

  • Define and evolve security observability and detection strategy, including telemetry onboarding, signal quality, threat intelligence inputs, alert tuning, and coverage validation.
  • Oversee Panther detections, MITRE ATT&CK-aligned use cases, investigation playbooks, and response automations, with measurement and validation loops for coverage, precision, latency, tuning effectiveness, safe rollout, and attack-simulation-based validation.
  • Transform security operations processes through practical use of AI, including designing agents and AI-native workflows for triage, enrichment, investigation, and response.
  • Drive Python-based tooling, CI/CD practices, and pragmatic use of AI to improve the speed, quality, and reliability of Security Detection & Response workflows.

Team Leadership & Cross-Functional Collaboration

  • Build, lead, and retain a high-performing remote Security Detection & Response team with clear expectations, strong onboarding, documentation, and knowledge-sharing practices.
  • Coach engineers to grow in technical depth, operational ownership, and leadership capability while partnering closely with Engineering, IT, Fraud, Legal, People, Support, and Product on incidents, investigations, and security improvements.
  • Work closely with Engineering and Infrastructure on telemetry quality, data pipelines, and operational readiness, and communicate security risk, incident impact, and remediation plans clearly to technical and non-technical stakeholders.
  • Define and review strategy-aligned metrics and reporting that measure Security Detection & Response effectiveness, highlight trends and gaps, and inform priorities and stakeholder decisions.

Required Skills & Experience

  • 5+ years of experience in Security Detection & Response, Security Engineering, or Incident Response.
  • 2+ years of people management experience, including hiring, coaching, and performance management, ideally in a remote-first environment.
  • Strong hands-on experience with modern SIEM platforms, security observability, detection engineering, log analysis, and complex security investigations; experience with Panther is highly valued.
  • Strong proficiency in Python for automation, analysis, and internal tooling, with the ability to remain technically credible with engineers.
  • Experience with automation, Git-based workflows, CI/CD practices, threat intelligence-informed detections, AI-assisted workflows, and building agents or AI-native workflows for security content, tooling, or response processes.
  • Experience with cloud-native platforms, security telemetry, and SaaS environments; GCP experience preferred. Familiarity with toolsets similar to Apollo's, including Google Workspace, Okta, GitHub, Slack, Atlassian, Cloudflare, CrowdStrike, Kandji, Panther, and Snowflake-backed log pipelines, is strongly valued.
  • Excellent written and verbal communication, leadership, and stakeholder management skills.

Preferred Qualifications

  • Experience leading Detection Engineering, Security Engineering, or Security Detection & Response teams in a high-growth cloud or SaaS environment.
  • Experience applying AI-assisted security tooling to detection, triage, investigation, or response in a production environment.
  • Familiarity with MITRE ATT&CK, threat intelligence workflows, and vulnerability management programs, SLAs, and remediation processes.
  • Relevant certifications such as CISSP, GCIA, GCIH, GCED, or cloud security certifications.

Skills

Security Detection & ResponseIncident ResponseDetection EngineeringPantherPythonSIEMMitre Att&CkCI/CDGCPThreat IntelligenceAi-Assisted WorkflowsSecurity ObservabilityLog AnalysisCrowdstrikeSnowflake
Vanta

Senior Security Engineer

VantaUnited States

Senior Security Engineer owning risk identification, threat modeling, vulnerability management, and secure architecture projects. Partners with engineering to build security culture and tools while minimizing operational friction. Requires independent ownership, software development experience, and strong collaboration skills.

227k – 267k
Remote5+ YOESecurity Engineering
Replit

Security Architecture Lead

ReplitFoster City, CA

Leads security architecture for a multi-tenant SaaS platform, defining vision, mentoring engineers, conducting reviews, and managing risks. Requires 8+ years in security engineering, technical leadership, and cloud-native expertise, especially GCP.

228k – 363k
Hybrid8+ YOESecurity Engineering
Headway

Senior Security Engineer

HeadwayNew York, NY +2

Senior Security Engineer partnering with product and engineering teams to design and implement secure features, build AI-native/agentic security tooling, create developer guardrails, and handle security operations at a mental healthcare platform company. Requires 5+ years in security/software engineering, strong technical depth, and excitement about AI in security.

223k – 279k
Hybrid5+ YOESecurity Engineering
Teleport

Senior Backend Engineer - Platform Security

TeleportUnited States

Senior Backend Engineer focused on application security for Teleport's core product. Design and implement security controls in Go for distributed systems, collaborating with security researchers on vulnerabilities.

222k – 342k
Remote5+ YOESecurity Engineering
Semgrep

Senior Security Engineer

SemgrepSan Francisco, CA +3

Senior Security Engineer embeds with engineering teams to enhance cloud and product security, leads production security improvements, and implements secure platform features using AWS/GCP. Requires 7+ years in security engineering with strong software background.

222k – 278k
Hybrid7+ YOESecurity Engineering