Cloud Security Research & Threat Detection Engineer

Cloud Threat Detection & Security Research Engineer

Location: Hybrid – Sunnyvale, CA

A leading cybersecurity technology provider is expanding its Cloud Threat Detection and Security Research team and is seeking an experienced Security Engineer to help identify, analyze, and detect advanced cloud-based threats. The team’s mission is to deliver high-fidelity threat research and detections that enable enterprise customers to respond and recover quickly in modern cloud environments.

This role is ideal for a highly technical security professional with deep experience in detection engineering and cloud threat research. You will investigate emerging attack techniques, build complex detections, and provide insights that directly improve security outcomes for customers. You will also play an important role in sharing research internally and externally to strengthen product effectiveness and industry awareness.

• Research and uncover threats targeting cloud service provider environments (AWS, GCP, Azure), Linux workloads, containers, and Kubernetes platforms.
• Design and implement advanced detection logic in close collaboration with data science and engineering teams.
• Share security research through blogs, webinars, whitepapers, and public presentations.
• Measure and improve detection effectiveness using frameworks such as MITRE ATT&CK and other standardized methodologies.
• Identify new attack techniques and develop scalable detection strategies.
• Help customers and internal teams understand the evolving cloud threat landscape and provide guidance on risk mitigation.
• Produce and maintain threat intelligence related to cloud-based attacks.

• 5+ years of experience in security research, incident response, penetration testing, detection engineering, or similar roles.
• Proven hands‑on experience building and tuning detections.
• Strong working knowledge of SQL and graph databases.
• Experience analyzing large‑scale datasets to identify malicious activity.
• Familiarity with threat detection across AWS, GCP, Azure, Linux, Windows, and Kubernetes environments.
• Cloud penetration testing experience is a plus.
• Programming or scripting experience in Python, Go, Java, and/or shell scripting.
• Experience working with threat intelligence platforms or workflows.
• Strong understanding of operating systems, file systems, and memory across Windows, macOS, and Linux.
• Prior blogging, public speaking, or technical content creation is a plus.
• Competitive US‑based salary range of $200,000 - $240,000, depending on experience, skill set, and location.
• Comprehensive benefits package including medical, dental, vision, life, and disability insurance, 401(k), paid holidays, vacation, and sick leave.
• Eligibility for equity participation and performance‑based bonuses.

This organization values diversity and inclusion and encourages candidates from all backgrounds to apply. The company offers a collaborative, research‑driven environment where engineers can make a meaningful impact on cloud security at scale while continuing to grow their technical expertise.