Skip to content
PinterestPinterestSan Francisco, CA

Security Software Engineer II, Detection and Response

Build and improve detection alerts, automation, logging pipelines, and internal tooling to identify and respond to security threats at Pinterest. Requires strong incident response, SIEM, threat hunting, and scripting skills in cloud environments, plus demonstrated responsible use of AI.

124k – 255k
Remote5+ YOESecurity Engineering

About the role

What you'll do

  • Build alerts and automation workflows to improve capabilities to detect and respond to external and internal security threats
  • Manage logging pipelines and infrastructure and onboard new logging sources to improve detection coverage
  • Develop and maintain internal tooling to expand and automate team detection and response capabilities
  • Respond to alerts generated from our tooling and run incidents as part of an on-call rotation
  • Collaborate with cross-team partners
  • Hunt for previously undetected threats in our environment
  • Leverage AI to streamline and enhance the efficiency, accuracy, and coverage of security engineering

What we’re looking for

  • Bachelor’s degree in Computer Science, Cybersecurity or a related field or equivalent experience
  • Strong knowledge of intrusion detection and incident response with an engineering focus in a modern cloud-first environment
  • Knowledge of the attacker lifecycle, common attack and detection techniques
  • Hands-on experience with writing SIEM queries for alerting, response, and threat hunting
  • Experience consuming threat intel and applying it to improve detection capabilities
  • Familiarity with using multiple sources of telemetry for threat investigations (e.g. EDR, Osquery, Firewall logs)
  • Understanding of networking technologies and/or network security, basic TCP/IP network fundamentals
  • Depth in ideally MacOS internals, or alternatively in Linux/UNIX or Windows internals, persistence mechanisms, privilege escalation techniques
  • Scripting or automation experience (e.g. Python, Go, Ruby) for tool development or integration
  • Demonstrated ability to use AI to improve speed and quality in your day-to-day workflow for relevant outputs
  • Strong track record of critical evaluation and verification of AI-assisted work (e.g. testing, source-checking, data validation, peer review)
  • High integrity and ownership: protect sensitive data, avoid over-reliance on AI, and remain accountable for final decisions and deliverables

Skills

SIEMEdrOsqueryPythonGoRubymacOSLinuxTCP/IPThreat IntelligenceIncident Response
Applied Intuition

Product Security Engineer

Applied IntuitionSunnyvale, CA

Embeds security into product design and development lifecycle by analyzing architectures, conducting threat modeling and assessments, maturing vulnerability management, and guiding developers on secure practices. Requires 5+ years in product/application security with expertise in cloud, containers, and automation tools.

125k – 160k
On-site5+ YOESecurity Engineering
Applied Intuition

Cloud Security Engineer

Applied IntuitionSunnyvale, CA

Secures multi-cloud infrastructure (AWS, Azure, GCP, OCI) with emphasis on Kubernetes hardening, IAM enforcement, CSPM using Wiz, and IaC security. Requires 5+ years experience, deep AWS and Kubernetes security expertise.

125k – 160k
On-site5+ YOESecurity Engineering
Trail of Bits

Security Engineer, Research & Engineering

Trail of BitsUnited States

Designs and builds security tools and frameworks in Rust, C++, Python for AI/ML, compilers, and low-level systems. Contributes to open-source, performs code reviews, and communicates findings via blogs and presentations.

125k – 185k
RemoteSecurity Engineering
Socket

Threat Analyst

SocketUnited States

Analyzes software supply chain threats using AI scanners, conducts malware analysis and threat hunting, builds automation tools, and integrates research into products to protect open source ecosystems. Requires 3+ years in security operations and master's degree.

126k – 170k
Remote3+ YOESecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k
On-site3+ YOESecurity Engineering