Senior Security Engineer; Detection & Response
Listed on 2026-02-16
-
IT/Tech
Cybersecurity, Systems Engineer
About The Company
At Scribd Inc. (pronounced “scribbed”), our mission is to spark human curiosity. Join our team as we create a world of stories and knowledge, democratize the exchange of ideas and information, and empower collective expertise through our four products:
Everand, Scribd, Slideshare, and Fable.
This posting reflects an approved, open position within the organization. We support a culture where our employees can be real and bold; where we debate and commit as we embrace plot twists; and where every employee is empowered to take action as we prioritize the customer. When it comes to workplace structure, we believe in balancing individual flexibility and community connections.
It’s through our flexible work benefit, Scribd Flex, that employees - in partnership with their manager - can choose the daily work-style that best suits their individual needs. A key tenet of Scribd Flex is our prioritization of intentional in-person moments to build collaboration, culture, and connection. For this reason, occasional in-person attendance is required for all Scribd Inc. employees, regardless of their location.
So what are we looking for in new team members? Well, we hire for “GRIT”. The textbook definition of GRIT is demonstrating the intersection of passion and perseverance towards long term goals. At Scribd Inc., we are inspired by the potential that this can unlock, and ask each of our employees to pursue a GRIT-ty approach to their work. In a tactical sense, GRIT is also a handy acronym that outlines the standards we hold ourselves and each other to.
Here’s what that means for you: we’re looking for someone who showcases the ability to set and achieve Goals, achieve Results within their job responsibilities, contribute Innovative ideas and solutions, and positively influence the broader Team through collaboration and attitude.
The Infrastructure Security team at Scribd is responsible for protecting our applications, platforms, and users through proactive, engineering-led security practices. As Scribd continues to scale, we are evolving our Detection & Response capabilities from reactive alerting toward a time-based security model - where speed, signal quality, and resilience are first-class design goals.
As a Senior Security Engineer focused on Detection & Response, you will help shape Scribd’s long-term detection and response capabilities while owning execution within a defined domain. You’ll work closely with application, infrastructure, and IT security teams - as well as our managed detection and response (MDR) partner - to design high-fidelity telemetry, operationalize our SIEM, and continuously reduce mean time to detect and respond (MTTD/MTTR).
This role is ideal for someone who enjoys building durable security systems, translating incidents into engineering improvements, and gradually expanding ownership through demonstrated impact.
When you join, you will:
Design And Operationalize Detection Capabilities
- Own and evolve detection coverage across applications, APIs, cloud infrastructure, identity, and bot/abuse surfaces
- Translate threat models and real incidents into high-confidence detection patterns
- Partner with engineers to instrument high-quality, security-relevant telemetry at the application and platform layers
Operationalize and mature the SIEM
- Lead enrichment, normalization, and correlation of logs into actionable security signals
- Define detection standards and patterns to reduce noise and improve signal quality
- Ensure telemetry supports both internal investigations and MDR-led monitoring
Improve response speed and quality
- Reduce MTTD and MTTR through improved triage, automation, and contextual alerting
- Build and maintain runbooks, response workflows, and post-incident learning loops
- Partner with IT Security and the MDR provider to continuously improve detection and response outcomes
Advance runtime and behavior-based protections
- Help design and deploy runtime detection and protection techniques (RASP-like approaches), especially for modern interfaces such as GraphQL
- Support bot detection, abuse prevention, and DDoS mitigation in collaboration with…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).