Lead Engineer - Incident Response Engineering

The pay range is $ - $.

Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications.

Target offers eligible team members and their dependents comprehensive health benefits and programs, including medical, vision, dental, life insurance and more. Other benefits for eligible team members include 401(k), employee discount, short‑term disability, long‑term disability, paid sick leave, paid national holidays, and paid vacation.

As a Lead Engineer, you serve as the technical anchor for the engineering team that supports the product. You help set the direction for application architecture and influence implementation across the team. You can distill abstract architecture into concrete design and guide others in building robust and scalable systems. You demonstrate deep expertise in applying software engineering patterns to solve complex technical problems.

You are an expert programmer who applies your skills in developing the product while also influencing fellow engineers through software design proposals, implementation feedback, and technical coaching. You show strong problem‑solving skills, help the team triage operational issues, and use your expertise to eliminate repeat occurrences.

• Use your technology acumen to apply and maintain knowledge of current and emerging technologies within specialized areas of the technology domain.
• Design, build, and enhance internal applications, services, and workflows that support insider risk detection, user risk assessment, and incident response operations.
• Help mature and become the subject matter expert for an internally developed UEBA capability, including detection workflows, enrichment, scoring, and analyst‑facing investigation experiences.
• Contribute across the broader Incident Response Engineering portfolio, including SOAR, artifact collection, and related internal platforms.
• Evaluate new technologies and participate in decision‑making, accounting for factors such as viability within Target’s technical environment, maintainability, and cost of ownership.
• Lead design, code review, testing, debugging, and implementation activities at the application level.
• Partner with engineers, analysts, and cross‑functional teams to translate operational needs into scalable technical solutions.
• Support data pipeline and workflow capabilities that improve data visibility, operational effectiveness, and coverage for current tooling gaps.
• Provide technical guidance to other engineers and help resolve complex operational and engineering issues through durable solutions.

• 4‑year degree or equivalent experience.
• 5+ years of software development experience with at least one full‑cycle implementation from requirement to production.
• Strong problem‑solving and thought‑partnership skills.
• Demonstrated sense of ownership and the ability to work with a limited set of requirements.
• Expertise in frontend and backend development.
• Expertise in JavaScript or Type Script, React, and Python.
• Experience designing and integrating REST APIs and web‑based services.
• Experience building internal applications, workflow systems, or analyst‑facing tools.
• Experience with SOAR platforms or security automation tools preferred.
• Experience with UEBA, insider risk, behavioral analytics, or detection engineering preferred.
• Familiarity with Postgre
  
  SQL or similar relational databases preferred.
• Familiarity with identity and access patterns, including RBAC and Active Directory / LDAP integrations, preferred.
• Familiarity with data pipelines or data‑processing workflows is a strong plus.
• Strong communication and collaboration skills.
• Ability to navigate ambiguity and contribute across multiple Incident Response Engineering tools and platforms.

This position will operate as a Hybrid/Flex for Your Day work arrangement based on Target’s needs. A Hybrid/Flex for Your Day work arrangement means the team member’s core role will need to be performed both onsite at the Target HQ MN location the role is assigned to and virtually, depending upon what your role, team and tasks require for that day.

Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target. For more information about Minnesota, please visit

To learn about benefits eligibility for this role, please visit

In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to candidate.acc Non‑accommodation‑related requests, such as application follow‑ups or technical issues, will not be addressed through this channel.