×
Register Here to Apply for Jobs or Post Jobs. X

Group Tech Lead, Security Threat Operations & Response Management

Remote / Online - Candidates ideally in
Warsaw, Kosciusko County, Indiana, 46580, USA
Listing for: Asana
Remote/Work from Home position
Listed on 2026-07-01
Job specializations:
  • IT/Tech
    Cybersecurity, Security Management & Operations
Salary/Wage Range or Industry Benchmark: 106954 - 158903 USD Yearly USD 106954.00 158903.00 YEAR
Job Description & How to Apply Below

At Asana, security is foundational to our mission of helping humanity thrive by enabling the world's teams to work together effortlessly. Our security team protects Asana's employees, users, and customers by proactively addressing threats and fostering a culture of security throughout our product and operations. We are looking for a collaborative, innovative Group Tech Lead for Security Threat Operations and Response Management to join our security organization in Warsaw.

This is a senior technical leadership role that sits at the intersection of offensive and defensive security — a true purple team visionary who will design and drive Asana's threat operations strategy from the ground up. You will set the long‑term technical direction for how we detect, emulate, respond to, and continuously improve our defenses against real‑world adversaries.

This role is based in our Warsaw office with an office‑centric hybrid schedule. The standard in‑office days are Monday, Tuesday, and Thursday. Most Asana staff have the option to work from home on Wednesdays. Working from home on Fridays depends on the type of work you do, and your recruiter can share more about the in‑office requirements. We offer a Contract of Employment (UoP) for our employees in Poland.

What

you’ll achieve
  • Purple Team Strategy & Technical Leadership:
    Define and own the technical strategy for a fully integrated purple team function, bridging offensive (red team) and defensive (blue team) capabilities into a cohesive, intelligence‑driven program.
  • Adversary Emulation:
    Design and implement a structured adversary emulation programme based on real threat intelligence, ensuring red team exercises directly improve blue team detection and response playbooks while establishing continuous feedback loops.
  • Security Maturity & Industry Standards:
    Lead Asana's security maturity journey, defining a roadmap that progressively advances capabilities toward frameworks and standards such as NIST CSF, ISO 27001, SOC 2, and MITRE ATT&CK maturity levels.
  • Lifecycle Management:
    Develop, own, and continuously improve the end‑to‑end incident response lifecycle, including policies, playbooks, runbooks, and post‑incident review processes.
  • Vulnerability Operations:
    Design and implement a comprehensive vulnerability management program covering discovery, risk‑based prioritization, SLA tracking, and remediation validation.
  • Process Design & Operational Excellence:
    Architect scalable security operations processes that reduce manual toil through automation and orchestration, enabling the team to operate at high velocity without sacrificing quality.
  • Detection Engineering:
    Build and standardize detection engineering workflows, ensuring threat detections are systematically developed, tested, tuned, and retired in alignment with the current threat landscape.
  • AI‑Driven Innovation:
    Identify, evaluate, and implement AI and machine learning capabilities to enhance the speed, accuracy, and coverage of threat detection, automated alert triage, root cause analysis, and incident summarization.
  • Organizational Leadership & Enablement:
    Provide technical mentorship to security engineers across red and blue team disciplines, integrate security best practices into cross‑functional development pipelines, and deliver advanced training program.
About you
  • 8+ years of progressive experience in security operations, threat detection and response, or offensive security, with at least 3 years in a senior technical leadership or principal engineering role.
  • Deep technical expertise across both red and blue team disciplines, with a proven track record of designing and leading a purple team or integrated threat operations programme at scale.
  • Strong command of SIEM platforms (e.g., Panther, Splunk, Elastic Security) for detection engineering, advanced log correlation, and extensive knowledge of EDR platforms (e.g., Crowd Strike, Sentinel One) for proactive threat hunting.
  • Expert‑level familiarity with operationalizing adversary emulation frameworks (such as MITRE ATT&CK) and handling forensic analysis during complex incident investigations in large cloud‑native environments.
  • Strong engineering and automation…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary