Job Description

Position Overview

• Location Type: Hybrid
• Job Type: Full Time
• Salary: Not specified

Blackstone is the world’s largest alternative asset manager. We seek to create positive economic impact and long-term value for our investors, the companies we invest in, and the communities in which we work. We do this by using extraordinary people and flexible capital to help companies solve problems. Our $1.1 trillion in assets under management include investment vehicles focused on private equity, real estate, public debt and equity, infrastructure, life sciences, growth equity, opportunistic, non-investment grade credit, real assets and secondary funds, all on a global basis. Further information is available at www.blackstone.com. Follow @blackstone on LinkedIn, X, and Instagram.

Business Unit Overview

Blackstone Technology & Innovations (BXTI) is the technology team at the core of each of Blackstone’s businesses and new growth initiatives. Serving both internal and external clients, we work to build the next generation of systems that manage risk, create efficiency and improve transparency within the firm and across our broad community of investors and portfolio companies.

BXTI is nimble and entrepreneurial – our open, iterative design processes and rapid pace of development mean that everyone on the team has the opportunity to make an impact from day one. We are problem solvers who can take projects from idea to implementation. We believe in active mentoring and developing excellence. We collaborate to find the best answers for our customers and for Blackstone. We are critical to the firm maintaining its competitive edge.

The Role

The Alert, Detection, and Response Engineer in our Cybersecurity Operations team is integral to keeping our team on the forefront of security detection and response maturity efficiency. They are a core member of our SOC strategy with a focus on escalated incident response / investigations, advanced detection engineering, and continuous advancement of our Blue Team capabilities. The ideal candidate will have hands-on experience with conducting investigations with cybersecurity platforms (e.g. email, endpoint, network, and cloud-based threat detection) and developing custom detections to address emerging and advanced cyber threats. This involves staying abreast of the latest threat landscape and ensuring that detection systems are agile and responsive to evolving security challenges. The candidate will work closely across the cybersecurity organization to develop bespoke detections and playbooks to support more advanced investigations and response requirements.

Responsibilities

• Develop advanced threat detection mechanisms to identify and raise alerts for adversarial or high-risk behaviors within the company’s systems.
• Act as an experienced senior incident responder, leading complex investigations and managing incidents from detection through resolution using tools such as security incident and event management (SIEM) and endpoint detection and response (EDR).
• Continuously improve and fine-tune detection portfolio to adapt to new and emerging cyber threats.
• Represent the Blue Team on Red and Purple Team efforts to design and build detections.
• Provide exceptional Tier 1-3 escalation support including for analysis, investigations, and engineering.
• Supervise and monitor the quality of security operations investigations.
• Provide reporting and analysis on investigations and trends.
• Work with the security engineering team to identify trends in detections and investigations to better inform the engineering process (security by design).
• Coach and train junior team members on detection and investigation techniques.

Qualifications

• 6+ years in a hands-on technical role in information security.
• Experience with cloud-native architectures such as AWS, Azure, Office 365, etc.
• Proven experience running invest