yandex
R
robinhood
Страна
Канада
Зарплата
136 000 CA$ – 160 000 CA$
+500% приглашений

Откликайтесь
на вакансии с ИИ

Ускорим процесс поиска работы
В офисеПолная занятость

Security Engineer, Detection & Response

ИИОценка ИИ

Высокий балл обусловлен сильным брендом компании, конкурентной зарплатой в CAD и возможностью работать с передовыми технологиями (AI, Cloud Native). Robinhood предлагает отличный пакет вознаграждений, включая капитал (equity).


Вакансия из Quick Offer Global, списка международных компаний
Пожаловаться

Сложность вакансии

ЛегкоСложно
ИИОценка ИИ

Роль требует 2–4 лет опыта и глубоких знаний в области SIEM, EDR и облачной безопасности. Высокая планка ожиданий в Robinhood и необходимость работы с современным стеком (AWS, Kubernetes) делают позицию сложной, но достижимой для специалистов среднего уровня.

Анализ зарплаты

Медиана135 000 CA$
Рынок115 000 CA$ – 155 000 CA$
ИИОценка ИИ

Предлагаемый диапазон 136,000 – 160,000 CAD соответствует верхнему сегменту рынка Торонто для специалистов с опытом 2–4 года. Это выше среднего медианного значения для аналогичных ролей в регионе.

Сопроводительное письмо

I am writing to express my strong interest in the Security Engineer, Detection & Response position at Robinhood. With a solid background in security operations and a passion for building robust detection logic, I am eager to contribute to your mission of democratizing finance by safeguarding your platform and customer trust.

In my previous experience, I have focused on tuning SIEM and EDR alerts to reduce false positives and improve signal quality, which aligns perfectly with the core responsibilities of this role. I am particularly impressed by Robinhood's commitment to using frontier technologies and would welcome the opportunity to apply my skills in SQL-based detection engineering and SOAR automation to enhance your incident response capabilities.

I am excited about the prospect of joining a high-performing team where ethics and innovation are at the forefront. Thank you for considering my application; I look forward to the possibility of discussing how my technical expertise can support Robinhood's security goals.

+250% к просмотрам

Составьте идеальное письмо к вакансии с ИИ-агентом

Составьте идеальное письмо к вакансии с ИИ-агентом

Откликнитесь в robinhood уже сейчас

Присоединяйтесь к элитной команде Robinhood и защищайте будущее финансов, используя передовые технологии обнаружения угроз!

Описание вакансии

Join us in building the future of finance.

Our mission is to democratize finance for all. An estimated $124 trillion of assets will be inherited by younger generations in the next two decades. The largest transfer of wealth in human history. If you’re ready to be at the epicenter of this historic cultural and financial shift, keep reading.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards.

The Security Operations (SecOps) team works to safeguard Robinhood and its customers by identifying, investigating, and responding to security threats. The team monitors production systems, endpoints, and cloud environments, and uses threat intelligence and structured testing to uncover risks before they affect customers. SecOps partners closely with engineering and infrastructure teams to strengthen detection coverage and response readiness. The team’s focus is clear: reduce risk, improve visibility, and protect customer trust every day!

As a Security Engineer, Detection & Response, you will strengthen Robinhood’s ability to detect, investigate, and contain security incidents. You will design and improve detection logic, analyze security telemetry across cloud and endpoint systems, and contribute to measurable reductions in false positives and detection gaps. You will work directly with SOC analysts and security engineers to refine investigation workflows and document incident findings. This role is ideal for someone who enjoys hands-on detection engineering and improving how teams respond to real-world threats!

The role is located in the office location(s) listed on this job description which will align with our in-office working environment. Please connect with your recruiter for more information regarding our in-office philosophy and expectations.

What you’ll do

  • Investigate security alerts across SIEM, EDR, and cloud security platforms, perform log analysis, and coordinate containment or remediation steps with engineering partners
  • Develop, test, and tune detection rules using query languages to improve signal quality and reduce false positives
  • Correlate data from multiple telemetry sources to identify attack patterns and determine appropriate response actions
  • Monitor emerging threats and update detection logic based on investigation findings and threat intelligence reporting
  • Contribute to automation efforts by building or refining SOAR playbooks and scripts that improve investigation speed and consistency
  • Document incidents and contribute to post-incident reviews with clear findings and recommended improvements to detection and response processes

What you bring

  • 2–4 years of experience in security operations, detection engineering, or incident response
  • Experience analyzing logs and tuning alerts within SIEMs, EDR platforms, and cloud security tools
  • Experience writing detections using query languages (e.g., SQL-like, KQL, or similar)
  • Familiarity with threat hunting and investigation techniques across cloud and endpoint environments
  • Ability to analyze security telemetry, identify patterns of malicious activity, and recommend practical improvements
  • Clear written and verbal communication skills when documenting incidents and collaborating with technical teams

Nice to have:

Our ambitious roadmap requires a great culture shaped by exceptional leaders. Here’s what we expect from them:

  • Experience developing and deploying SOAR playbooks to automate detection and response workflows
  • Familiarity with AWS, Okta, Kubernetes, and/or Google Workspace security monitoring tools
  • Experience writing software to support detection and response tooling with a focus on secure, maintainable code
  • Experience in building Agentic workflows, optimizing workflows with Generative AI

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete thisApplicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

In addition to the base pay range listed below, this role is also eligible for bonus opportunities + equity + benefits.

Base pay for the successful applicant will depend on a variety of job-related factors, which may include education, training, experience, location, business needs, or market demands. The expected base pay range for this role is based on the location where the work will be performed.

Base Pay Range:

Toronto, ON

$136,000—$160,000 CAD

Click here to learn more about our Total Rewards, which vary by region and entity.

If our mission energizes you and you’re ready to build the future of finance, we look forward to seeing your application.

Robinhood provides equal opportunity for all applicants, offers reasonable accommodations upon request, and complies with applicable equal employment and privacy laws. Inclusion is built into how we hire and work—welcoming different backgrounds, perspectives, and experiences so everyone can do their best. Please review the Privacy Policy for your country of application.

+400% к собеседованиям

Создайте идеальное резюме с помощью ИИ-агента

Создайте идеальное резюме с помощью ИИ-агента

Навыки

  • SIEM
  • EDR
  • SQL
  • KQL
  • SOAR
  • AWS
  • Okta
  • Kubernetes
  • Google Workspace
  • Python
  • Generative AI

Возможные вопросы на собеседовании

Проверка практического опыта в настройке правил обнаружения и минимизации ложных срабатываний.

Расскажите о случае, когда вы значительно снизили количество ложных срабатываний (false positives) для конкретного правила обнаружения. Какой подход вы использовали?

Оценка навыков работы в облачных средах, что критично для инфраструктуры Robinhood.

Какие специфические индикаторы компрометации (IoC) вы бы искали при расследовании подозрительной активности в среде AWS или Kubernetes?

Проверка способности к автоматизации рутинных задач безопасности.

Опишите ваш опыт разработки плейбуков для SOAR. Какие процессы вы автоматизировали в первую очередь и почему?

Оценка аналитического мышления и умения работать с данными.

Как вы подходите к корреляции данных из различных источников телеметрии (например, логи эндпоинтов и сетевой трафик) для выявления сложных атак?

Проверка осведомленности о современных угрозах.

Как вы интегрируете данные Threat Intelligence в процесс создания новых правил обнаружения?

Похожие вакансии

H
HuntTech
217 000 ₽ – 268 000 ₽

ИБ-специалист (Senior)

SeniorУдалённо
SoC · EDR · HIPS · Firewalls · Network Segmentation · Vulnerability Management · GLPI · 2FA · Encryption · MDM · Positive Technologies Vulnerability Management · Efros DefOps
+12 навыков
E
EVOSTAFF
190 000 ₽

Аналитик по информационной безопасности (не appsec)

MiddleУдалённо
Kubernetes · Unix · Keycloak · Linux · Windows · Information Security · PCI DSS · Network Security · Microservices
+9 навыков
T
TopSelection
350 000 ₽ – 400 000 ₽

AppSec Engineer (Middle+/Senior)

SeniorУдалённо
Application Security · Penetration Testing · Code Review · Burp Suite · DAST · SAST · SCA · Threat Modeling · OWASP Top 10 · SDLC
+10 навыков
Т
Тензор
154 000 ₽ – 216 000 ₽

Инженер по информационной безопасности

Удалённо
Python · Node.js · C++ · SAST · Application Security · OWASP Top 10 · CWE Top 25 · OWASP ASVS · Web Application Security
+9 навыков
Г
ГНИВЦ
400 000 ₽ – 450 000 ₽

Архитектор ИБ

Удалённо
IAM · IDM · OAuth2 · OpenID Connect · SAML · JWT · JWS · JWE · MFA · WebAuthn · FIDO2 · AppSec · OWASP Top 10 · OWASP ASVS · Zero Trust · Cryptography · Microservices · API Security
+18 навыков
Ц
Циан
360 000 ₽ – 430 000 ₽

Senior InfraSec engineer

SeniorУдалённо
Cloud Security · Network Security · IAM · PAM · Hardening · Vulnerability Management · Security by Design · Kubernetes · Docker
+9 навыков
более 1000 офферов получено
4.9

1000+ офферов получено

Устали искать работу? Мы найдём её за вас

Quick Offer улучшит ваше резюме, подберёт лучшие вакансии и откликнется за вас. Результат — в 3 раза больше приглашений на собеседования и никакой рутины!

R
robinhood
Канадаот 136 000 CA$