Docker

Senior Security Engineer, Detection & Response (Eastern Preferred)

Canada

$167,200 – $209,000Compensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cloud Computing, Cybersecurity, Software DevelopmentIndustries

Position Overview

  • Location Type: Remote
  • Job Type: FullTime
  • Salary: $167.2K - $209K

Docker is a remote-first company dedicated to simplifying the lives of developers building world-changing apps. They provide an integrated development pipeline and application components to accelerate workflows and empower developers worldwide. The Security Team is committed to protecting Docker and its customers, and the Detection and Response Team plays a critical role in identifying, analyzing, and mitigating threats. They are seeking a Senior Detection and Response Engineer with expertise in log pipeline generation to enhance security visibility and response capabilities.

Responsibilities

  • Detection as Code & Incident Response:
    • Monitor, detect, and respond to cybersecurity threats.
    • Lead incident investigations, conduct root cause analysis, and automate threat detection and hunting.
    • Develop detection and response playbooks and participate in on-call rotations.
  • Log Pipeline Development & Optimization:
    • Design, implement, and maintain log ingestion, parsing, and normalization pipelines across endpoint, network, cloud, and application logs.
    • Ensure log consistency across EDR, SIEM, SOAR, and threat detection tools.
  • Automation & Infrastructure as Code (IaC):
    • Use Terraform, Kubernetes, and scripting to automate log infrastructure in cloud environments and improve security monitoring efficiency.
  • Compliance & Data Retention:
    • Ensure log storage and retention meet regulatory and security requirements, supporting audit to maintain compliance.
  • Cross-Team Collaboration & Security Strategy:
    • Work with Product Security, Infrastructure, DevOps, and IT on various initiatives to mature the Detection Engineering program and strengthen Docker’s overall security posture.
    • Partner with stakeholders to improve threat intelligence, detection, and incident response capabilities.

Requirements

  • Background:
    • Degree in Information Security, Computer Science, Computer Engineering, Forensics, or equivalent work experience.
  • Experience:
    • 4-5 years of hands-on experience in detection and response, including triage and incident response in enterprise SaaS environments.
  • Log Pipeline Expertise:
    • Proven experience in building log ingestion and normalization pipelines across diverse systems.
  • Technical Skills:
    • Expertise in Detection as Code, particularly using Python and SQL.
    • Subject matter expert in endpoint security and/or cloud security.
  • Knowledge:
    • Strong working knowledge of Mac, Linux.

Application Instructions

  • (No specific application instructions were provided in the original job description.)

Skills

Terraform
Kubernetes
SIEM
SOAR
EDR
Incident Response
Threat Detection
Threat Hunting
Log Management
Cloud Security
Scripting
Automation
Root Cause Analysis
Compliance

Docker

Containerization platform for application development

About Docker

Docker offers a containerization platform that enables developers to build, share, and run applications in isolated environments called containers. These containers package applications with their dependencies, ensuring consistent performance across different stages of development and deployment. Docker stands out from competitors by simplifying the development process and enhancing collaboration, with a freemium business model that includes various subscription tiers and services like Docker Hub and Docker Desktop. The company's goal is to streamline software development and deployment, making it easier for developers to manage applications efficiently.

Palo Alto, CaliforniaHeadquarters
2013Year Founded
$484.3MTotal Funding
SERIES_CCompany Stage
Consumer Software, Enterprise SoftwareIndustries
501-1,000Employees

Benefits

Flexible Work Hours
Home Office Stipend
Parental Leave
Phone/Internet Stipend
Unlimited Paid Time Off
Professional Development Budget
Company Equity
Health Insurance

Risks

Competition from Kubernetes could impact Docker's market share.
Alternative container runtimes like Podman pose a threat to Docker's dominance.
Security vulnerabilities in Docker containers could undermine platform trust.

Differentiation

Docker offers a comprehensive platform for building, sharing, and running applications.
Docker's containerization ensures consistency across development and deployment stages.
Docker's freemium model provides flexibility with various subscription tiers.

Upsides

Increased adoption of Kubernetes drives demand for Docker's containerization solutions.
Docker's acquisitions enhance its performance, flexibility, and security features.
Growing hybrid and multi-cloud environments position Docker as a key player.

Land your dream remote job 3x faster with AI