Security Engineer, Detection & Response
Listed on 2026-06-23
-
Security
Cybersecurity
About Anthropic
Anthropic’s mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.
AboutThe Role
At Anthropic, we are pioneering new frontiers in AI that have the potential to greatly benefit society. However, developing advanced AI also comes with risks if not properly safeguarded. That’s why we are seeking an exceptional Detection and Response engineer that will be on the front lines to build solutions to monitor for threats, rapidly investigate incidents, and coordinate response efforts with other teams.
In this role, you will have the opportunity to shape our security capabilities from the ground up alongside our world‑class research and security teams.
- Lead cybersecurity Incident Response efforts covering diverse domains from external attacks to insider threats involving all layers of Anthropic’s technology stack
- Develop and deploy novel tooling that may leverage Large Language Models to enhance detection, investigation, and response capabilities
- Create and optimize detections, playbooks, and workflows to quickly identify and respond to potential incidents
- Review Incident Response metrics and procedures and drive continuous improvement
- Work cross‑functionally with other security and engineering teams
- Note:
This position will require participation in an on‑call rotation
- 3+ years of software engineering experience, with security experience a plus and/or
- 5+ years of detection engineering, incident response, or threat hunting experience
- A solid understanding of cloud environments and operations
- Experience working with engineering teams in a SaaS environment
- Exceptional communication and collaboration skills
- An ability to lead projects with little guidance
- The ability to pick up new languages and technologies quickly
- Experience handling security incidents and investigating anomalies as part of a team
- Knowledge of EDR, SIEM, SOAR, or related security tools
- Experience performing security operations or investigations involving large‑scale Kubernetes environments
- A high level of proficiency in Python and query languages such as SQL
- Experience analyzing attack behavior and prototyping high quality detections
- Experience with threat intelligence, malware analysis, infrastructure as code, detection engineering, or forensics
- Experience contributing to a high growth startup environment
$300,000—$405,000 USD
LogisticsEducation requirements:
We require at least a Bachelor's degree in a related field or equivalent experience.
Location‑based hybrid policy:
Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
Visa sponsorship:
We do sponsor visas! However, we aren’t able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.
Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you’re interested in this work. We think AI systems like the ones we’re building have enormous social and ethical implications.
We think this makes representation even more important, and we strive to include a range of diverse perspectives on our team.
To protect yourself from potential scams, remember that Anthropic recruiters only contact you from email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).