×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager Systems Engineer

Threat Detection & Response Engineer III

Job in Denver, Denver County, Colorado, 80285, USA
Listing for: True Anomaly
Full Time position
Listed on 2026-06-18
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager, Systems Engineer
Salary/Wage Range or Industry Benchmark: 115000 - 165000 USD Yearly USD 115000.00 165000.00 YEAR
Job Description & How to Apply Below

Threat Detection & Response Engineer III

Denver, CO or Long Beach, CA

Our Mission

True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors—enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.

Our Values
  • Be the offset. We create asymmetric advantages with creativity and ingenuity.
  • What would it take? We challenge assumptions to deliver ambitious results.
  • It’s the people. Our team is our competitive advantage and we are better together.
Your Mission

As a Threat Detection & Response Engineer III, you will be an integral part of our threat detection and response function, helping build and mature the detection capabilities, response processes, and security tooling that underpin our security operations program.

  • Develop incident response plans, playbooks, and SOPs; build scalable processes to support future team growth.
  • Design and implement custom security detections across corporate and cloud environments, leveraging frameworks like MITRE ATT&CK.
  • Continuously tune detection rules and develop threat models to improve fidelity and address coverage gaps.
  • Monitor, triage, and respond to security alerts across multiple platforms and data sources.
  • Perform incident investigations through technical analysis, containment, eradication, and recovery; document findings and lessons learned.
  • Proactively hunt for threats and leverage threat intelligence to anticipate emerging adversary TTPs.
  • Administer and optimize EDR and SIEM platforms; integrate log sources to enhance visibility and correlation.
  • Build automation and orchestration workflows to improve response efficiency.
  • Partner with cross-functional teams (IT, Engineering, Legal, Compliance) and communicate technical findings to diverse stakeholders.
    • Qualifications
    • 3+ years of experience in cybersecurity, with at least 2 years focused on security operations, detection engineering, incident response, or threat hunting.
    • Experience in building or tuning security detections.
    • Familiarity with risk-based alerting and alert tuning, including strategies to reduce noise, improve detection fidelity, and prioritize high‑signal alerts.
    • Familiarity with EDR platforms, including basic alert triage and response actions.
    • Working knowledge of Windows, MacOS, or Linux endpoint security and common attack techniques.
    • Familiarity with SIEM platforms and log analysis (e.g., Splunk, Elastic, or similar).
    • Basic understanding of common attack vectors, TTPs, and security frameworks such as MITRE ATT&CK and the Cyber Kill Chain.
    • Experience with scripting (Python, Power Shell, or Bash) for automation or analysis tasks.
    • Clear verbal and written communication skills.
    Preferred Qualifications
    • Active TS/SCI security clearance or ability to obtain and maintain a security clearance.
    • Knowledge of digital forensics and malware analysis techniques.
    • Experience building or significantly maturing a detection and response program.
    • Experience working in Azure Government Cloud (Azure Gov Cloud) environments.
    • Experience with cloud security monitoring in AWS, GCP, or Azure commercial environments.
    • Familiarity with CMMC, FedRAMP, NIST 800-53, or other federal compliance frameworks.
    • Experience with Detections-as-Code paradigms, Git Ops, CI/CD, etc.
    • Experience participating in or supporting red team/purple team exercises.
    • On‑call rotation participation, including after‑hours participation, is required for incident response coverage.
    • Must be comfortable working under pressure during active security incidents.
    • High degree of autonomy and ownership.
    • Direct access to leadership and opportunity to influence security strategy.
    • This role will be onsite in our Denver (Centennial), CO office or our Long Beach, CA office.
    • This role operates in a fast‑paced, high‑stakes environment where rapid decision‑making and adaptability are essential.
    Compensation
    • Base Salary: $115,000 to $165,000
    • Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave.
    • Your actual level and base salary will be determined on a case‑by‑case basis and may vary…
    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)
    0
    200
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search