Security Operations Lead at Replit

Foster City, California, United States

Apply Now
Replit Logo
$220,000 – $325,000Compensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Technology, AI, Cloud ComputingIndustries

Requirements

  • 7+ years of experience in Security Operations, with 3+ years in a senior or lead capacity

Responsibilities

  • Lead, mentor, and scale a global SOC team responsible for 24/7 monitoring, alert intake, triage, correlation, and escalation
  • Build operational rigor: processes, runbooks, SLAs, metrics, and quality standards for high-scale environments
  • Cover monitoring across cloud infrastructure (GCP, AWS, Azure), Kubernetes/GKE/EKS/AKS clusters, SaaS platforms (Google Workspace, GitHub, Slack, Okta, etc.), endpoints (macOS, Linux, Windows) including EDR/XDR telemetry, developer platforms + CI/CD pipelines, and AI/ML systems and model-serving workflows
  • Evaluate, adopt, and integrate AI-native SOC technologies for triaging, detection, and correlation
  • Identify opportunities to automate triage, investigations, enrichment, and reporting
  • Serve as the internal expert on the capabilities and limitations of AI-based SOC tooling
  • Own the entire SIEM ecosystem—ingestion, normalization, correlation, enrichment, tuning, dashboards, and metrics
  • Expand telemetry across cloud logs, API logs, system events, SaaS audit logs and admin events, identity providers (Okta, Google, Azure AD), and endpoint EDR/XDR event streams
  • Standardize data schemas and improve detection signal quality across sources
  • Develop high-fidelity detections for cloud-native attacks, identity threats and lateral movement, SaaS misconfigurations and privilege abuse, endpoint malware/behavior anomalies, insider threats, and account takeover patterns
  • Use MITRE ATT&CK, MITRE Cloud Matrix, and threat intel to drive detection coverage
  • Collaborate with Engineering, Cloud Security, and SRE to ensure telemetry supports detection use cases
  • Lead day-to-day triage and threat analysis activities, ensuring accurate categorization and prioritization
  • Drive complex investigations involving correlated events across cloud, SaaS, endpoints, and developer platforms
  • Guide root cause analysis and work with owners to drive remediation and architectural improvements
  • Continuously refine logic, reduce false positives, and improve signal quality
  • Partner with Cloud Security on cloud posture and preventative controls
  • Work with Compliance/GRC to support SOC 2, ISO 27001, and audit readiness
  • Collaborate with SRE and Engineering to instrument new services with structured logs and detection hooks
  • Coordinate with IT/Endpoint teams to ensure full endpoint telemetry and EDR response readiness
  • Communicate threats, gaps, and trends to leadership and engineering stakeholders

Skills

Key technologies and capabilities for this role

SIEMDetection EngineeringAlert TriageGCPAWSAzureKubernetesGKEEKSAKSEDRXDRSaaS SecurityCI/CDAI/ML Security

Questions & Answers

Common questions about this position

What is the salary range for the Security Operations Lead position?

The salary range is $220K - $325K.

Is this a remote position or does it require office work?

This information is not specified in the job description.

What key skills and experiences are required for this role?

The role requires expertise in SIEM ownership, detection engineering, 24/7 SOC monitoring across multi-cloud (GCP, AWS, Azure), Kubernetes, SaaS, endpoints, and AI workloads, plus evaluating AI-based SOC technologies.

What does the team structure look like for this position?

You will lead, mentor, and scale a global SOC team responsible for 24/7 monitoring, alert triage, and operational readiness.

What makes a strong candidate for the SOC Lead role?

A strong candidate has hands-on leadership experience in building and operating SOCs in cloud-native and AI-driven environments, with skills in detection engineering, SIEM management, and integrating AI-based security tools.

Replit

Cloud-based platform for coding collaboration

Website

About Replit

Replit provides a cloud-based platform for software development and deployment, allowing users to write, run, and share code directly from their web browser. This eliminates the need for complicated local setups, making it easier for a variety of users, including enterprises, freelancers, and students, to engage in coding. The platform features an online code editor, an integrated development environment (IDE), and AI-powered coding assistance, supporting multiple programming languages. Replit stands out from its competitors by offering real-time collaboration tools and project management features, which enhance teamwork among developers. The company operates on a subscription-based model, providing different pricing tiers that unlock additional features, and also generates revenue through enterprise solutions and educational partnerships. The goal of Replit is to make coding accessible and enjoyable for everyone, regardless of their experience level.

San Francisco, CaliforniaHeadquarters
2016Year Founded
$216MTotal Funding
LATE_VCCompany Stage
Enterprise Software, AI & Machine Learning, EducationIndustries
51-200Employees

Benefits

Competitive salary & equity
Your choice of new equipment & software
Health, dental, & vision insurance
Autonomy at work
Flexible work hours
Learning & development stipend
Monthly health & wellness stipend
Generous parental leave
Unlimited PTO (2 weeks minimum required)
401k matching
Commuter benefits
Expensed lunch
Yearly off-sites

Risks

Replit faces competition from GitHub Codespaces with similar features.
Market saturation in online coding environments may challenge Replit's differentiation.
Significant investment in AI development could strain Replit's financial resources.

Differentiation

Replit offers a browser-based IDE supporting over 50 programming languages.
The platform enables real-time collaboration and code sharing across multiple devices.
Replit's AI-powered coding assistance enhances developer productivity and efficiency.

Upsides

Replit raised $97.4M to expand cloud services and lead in AI development.
The platform benefits from increased demand for remote and collaborative coding tools.
Educational institutions are adopting Replit for remote learning, boosting its user base.

Related Jobs

Missouri City
Remote iconRemote

Senior SOC Engineer

CVS Health
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Remote
Remote iconRemote

Security Operations Manager

Jobber
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Remote
Remote iconRemote

Global Regulatory Lead

Binance
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Lead Instructor, Cybersecurity - Spring 2026

CodePath
Salary not specified
  • Employment type iconPart Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Remote
Remote iconRemote

Business Operations Lead

Atticus
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)
San Francisco +3 more
Remote iconRemote

Security Engineer, Insider Threat Detection & Response

OpenAI
$260,000 - $405,000/year
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)
Remote
Remote iconRemote

Senior Manager, Incident Reponse

Vultr
$150,000 - $225,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)

Land your dream remote job 3x faster with AI

Try Jobo Free