About the RoleWe are hiring a Detection & Response Engineer to help build FSAI's security program from the ground up. As one of our founding hires, you will own an entire domain, not just a slice of someone else's project. You'll serve as an incident handler on our on-call rotation, balanced across Australia and North American time zones so that coverage follows the sun rather than asking you to work off-hours. We treat security as a systems problem: our default is to solve problems smartly through automation and scale, engineering our way out of manual toil rather than accepting a baseline of endless ticket processing. We seek out industry-leading vendors and approaches rather than defaulting to what is slow and safe, and we design controls that protect the business without degrading the engineering or end-user experience. This is all new, so expect it to be bumpy while we build it out.
Responsibilities- Design, build, test, and tune high-fidelity detections across endpoints, cloud, identity, and infrastructure, aligned to attacker TTPs
- Build and improve log onboarding, enrichment, and the pipelines that feed detection and investigation on our logging platform (e.g., Scanner)
- Build automation (e.g., Tines) that scales triage, investigation, and response, wired directly into our on-call and paging systems (e.g., incident.io, PagerDuty)
- Translate raw intel and security research into actionable, automated detection logic
- Investigate alerts, drive incidents to resolution, and coordinate with the endpoint stack (e.g., CrowdStrike, Microsoft Defender, Huntress), feeding lessons learned back into detections and runbooks
Minimum Qualifications- 5+ years of experience in detection engineering, security operations, or security engineering
- Strong scripting and development skills in Python and/or Go
- Proven experience building detections against large-scale log data and working with a logging or SIEM-style platform
- Deep knowledge of operating-system internals, cloud (AWS) security concepts, and common attacker techniques
- A strong bias toward automating recurring problems rather than absorbing them
Preferred Qualifications- Depth in threat hunting, digital forensics, malware analysis, or threat intelligence
- Experience with detection-as-code and building CI/CD pipelines for detections
- Familiarity with automation/SOAR platforms and case management systems
- Experience applying ML/LLM techniques to detection (e.g., enrichment, correlation, risk-based alerting)
Why Join Us?- A high-performance culture
- State-of-the-art technology
- Experience world-class leadership
- Scale of impact and purpose
- A competitive salary and a huge growth trajectory
- Work with the best in the industry
- Flexible work environment
- Diversity and creativity