Senior Security Engineer - Detection and Response (Remote)

    • Fastly
  • San Francisco, CA
  • Posted 42 days ago | Updated moments ago


On Site
USD 181,220.00 - 226,520.00 per year
Full Time


Amazon Web Services
Google Cloud Platform
Security engineering
Security architecture
Risk management
Incident management
Programming languages
Linux administration
Threat analysis
Security operations
Open source
Cloud computing
Regulatory Compliance
National Institute of Standards and Technology
Intrusion detection

Job Details

Fastly helps people stay better connected with the things they love. Fastly's edge cloud platform enables customers to create great digital experiences quickly, securely, and reliably by processing, serving, and securing our customers' applications as close to their end-users as possible - at the edge of the Internet. The platform is designed to take advantage of the modern internet, to be programmable, and to support agile software development. Fastly's customers include many of the world's most prominent companies, including Vimeo, Pinterest, The New York Times, and GitHub.

We're building a more trustworthy Internet. Come join us.

As a Senior Security Engineer on our Detection and Response team, you will help detect and respond to threats for one of the biggest online platforms in the world that handles massive amounts of traffic at very low latency.

We are looking for a teammate with expertise in both security engineering and operations and that values the complement between the two. You will have the opportunity to build and integrate tooling and detections, as well as investigate threats and lead incidents. As part of the larger Security organization, we make risk-informed decisions and prioritize automations to help us scale. In this role, you will help design, build, and mature our detection and response program, enabling rapid detection and effective response to threats against Fastly.

What You'll Do:
  • Develop detections and other analytics to identify threats across cloud, corporate, and edge environments
  • Partner closely with Engineering, Security Architecture, Risk Management, Compliance, and other teams to prioritize detections and delivery of other security initiatives
  • Triage and investigate security threats and lead security incidents
  • Research, evaluate, implement, and maintain a variety of custom and commercial security tools, such as Endpoint Detection and Response (EDR), anti-phishing, and Security Information and Event Monitoring (SIEM)
  • Develop strategies, frameworks, designs, automations, metrics, and processes to support the maturity of the Detection and Response program
  • Develop and maintain incident response playbooks and other detection and response documentation
  • Conduct threat hunts to discover unknown malicious activity across our environment
  • Participate in our on-call rotations
  • Mentor other team members and contribute to larger Security initiatives

What We're Looking For:

At Fastly we value a diversity of voices. The following is not a laundry list, but to be effective in this role you should possess most of the following and an interest in learning more about the rest:
  • Experience in utilizing Splunk to include investigating threats, developing metrics and dashboards, normalizing data feeds, and integrating with other tools
  • Familiarity of attacker tactics, techniques, and procedures (TTPs) and investigating advanced threats
  • Experience in evaluating, implementing, configuring, tuning, and maintaining Endpoint Detection and Response solutions
  • Experience with at least one major public cloud infrastructure, such as Amazon Web Services (AWS) or Google Cloud Platform (Google Cloud Platform)
  • Experience in effectively leading large and complex security incidents from detection to remediation
  • Familiarity with modern security frameworks and best practices, such as the MITRE ATT&CK framework and NIST CSF
  • Proficiency in one or more general purpose programming languages such as Python, Ruby, Go, or Rust
  • Experience with Linux administration at scale, associated intrusion/manipulation techniques, and standard methodologies for system hardening and process isolation

We'll be super impressed if you have experience in any of these:
  • Developed "detections-as-code"
  • Conducted threat hunts
  • Published research on detection engineering or threat intelligence
  • Developed automations to improve security operations
  • Familiarity with content delivery networks (CDN), edge cloud platforms, or other Fastly products and services

Work Hours:

This position will require you to be available during core business hours and support an on-call rotation.

Work Locations & Travel Requirements:

This position is open to both hybrid and remote work.

The preferred locations for this position are:
  • San Francisco, CA
  • Los Angeles, CA
  • Denver, CO
  • New York City, NY

Fastly currently embraces a largely hybrid model for most roles which allows employees flexibility to split their time between the office and home.

We are willing to consider remote candidates in US (Remote).

This position may require travel as required by your role or requested by your manager.


The estimated salary range for this position is $181,220 - $226,520.

Starting salary may vary based on permissible, non-discriminatory factors such as experience, skills, qualifications, and location.

This role may be eligible to participate in Fastly's equity and discretionary bonus programs.


We care about you. Fastly works hard to create a positive environment for our employees, and we think your life outside of work is important too. We support our teams with great benefits that start on the first day of your employment with Fastly. Curious about our offerings?

We offer a comprehensive benefits package including medical, dental, and vision insurance. Family planning, mental health support along with Employee Assistance Program, Insurance (Life, Disability, and Accident), a Flexible Vacation policy and up to 18 days of accrued paid sick leave are there to help support our employees. We also offer 401(k) (including company match) and an Employee Stock Purchase Program. For 2024, we offer 10 paid local holidays, 11 paid company wellness days.

Why Fastly?
  • We have a huge impact. Fastly is a small company with a big reach. Not only do our customers have a tremendous user base, but we also support a growing number of open source projects and initiatives . Outside of code, employees are encouraged to share causes close to their heart with others so we can help lend a supportive hand.
  • We love distributed teams. Fastly's home-base is in San Francisco, but we have multiple offices and employees sprinkled around the globe. As a new hire, you will be able to attend our IN-PERSON new hire orientation in our San Francisco office! It is an exciting week-long experience that we offer to new employees to build connections with colleagues across Fastly, participate in hands-on learning opportunities, and immerse yourself in our culture firsthand.
  • We value diversity. Growing and maintaining our inclusive and diverse team matters to us. We are committed to being a company where our employees feel comfortable bringing their authentic selves to work and have the ability to be successful -- every day.
  • We are passionate. Fastly is chock full of passionate people and we're not 'one size fits all'. Fastly employs authors, pilots, skiers, parents (of humans and animals), makeup geeks, coffee connoisseurs, and more. We love employees for who they are and what they are passionate about.

We're always looking for humble, sharp, and creative folks to join the Fastly team. If you think you might be a fit please apply! A fully completed application and resume or CV are required when applying.

Fastly is committed to ensuring equal employment opportunity and to providing employees with a safe and welcoming work environment free of discrimination and harassment. Our employment decisions are based on business needs, job requirements and individual qualifications. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, family or parental status, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.

Consistent with the Americans with Disabilities Act (ADA) and federal or state disability laws, Fastly will provide reasonable accommodations for applicants and employees with disabilities. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact your Recruiter, or the Fastly Employee Relations team at or .

Fastly collects and processes personal data submitted by job applicants in accordance with our Privacy Policy . Please see our privacy notice for job applicants .