Docker
Senior Security Engineer, Detection & Response (Eastern Preferred)
Docker
$167k - $209k
Remote, Canada, Mexico, United States
Apply Now ->
Python
Kubernetes
SQL
Cybersecurity

Senior Security Engineer, Detection & Response (Eastern Preferred)

Overview

At Docker, we make app development easier so developers can focus on what matters. Our remote-first team spans the globe, united by a passion for innovation and great developer experiences. With over 20 million monthly users and 20 billion image pulls, Docker is the #1 tool for building, sharing, and running apps—trusted by startups and Fortune 100s alike. We’re growing fast and just getting started. Come join us for a whale of a ride!

Job Description

Docker’s Security Team is committed to protecting both our organization and our customers. The Detection and Response Team plays a critical role in identifying, analyzing, and mitigating threats across Docker’s infrastructure. We are now seeking a Senior Detection and Response Engineer with expertise in log pipeline generation to enhance security visibility, threat detection, and response capabilities.

Responsibilities

  • - Monitor, detect, and respond to cybersecurity threats
  • - Lead incident investigations, conduct root cause analysis, and automate threat detection and hunting
  • - Develop detection and response playbooks and participate in on-call rotations
  • - Design, implement, and maintain log ingestion, parsing, and normalization pipelines across endpoint, network, cloud, and application logs
  • - Use Terraform, Kubernetes, and scripting to automate log infrastructure in cloud environments and improve security monitoring efficiency
  • - Ensure log storage and retention meet regulatory and security requirements
  • - Work with Product Security, Infrastructure, DevOps, and IT on various initiatives to mature the Detection Engineering program

Required Skills

  • - Background in Information Security, Computer Science, Computer Engineering, Forensics, or equivalent work experience
  • - 4-5 years of hands-on experience in detection and response, including triage and incident response in enterprise SaaS environments
  • - Proven experience in building log ingestion and normalization pipelines across diverse systems
  • - Expertise in Detection as Code, particularly using Python and SQL
  • - Subject matter expert in endpoint security and/or cloud security
  • - Strong working knowledge of Mac, Linux, and Windows operating systems
  • - Hands-on experience with major cloud infrastructures, including AWS, Azure, and GCP
  • - Experience with Kubernetes is a nice-to-have
  • - Demonstrated experience working across multiple teams in collaborative security roles

Benefits

  • - Freedom & flexibility; fit your work around your life
  • - Designated quarterly Whaleness Days
  • - Home office setup; we want you comfortable while you work
  • - 16 weeks of paid Parental leave
  • - Technology stipend equivalent to $100 net/month
  • - PTO plan that encourages you to take time to do the things you enjoy
  • - Quarterly, company-wide hackathons
  • - Training stipend for conferences, courses and classes
  • - Equity; we are a growing start-up and want all employees to have a share in the success of the company
  • - Docker Swag
  • - Medical benefits, retirement and holidays vary by country
Apply Now ->

About the company

Docker

Docker provides a suite of development tools, services, trusted content, and automations, used individually or together, to accelerate the delivery of secure applications.


All Job Openings at Docker