Search all jobs
Browse jobsBoston, MA › Senior Detection and Response Engineer

Senior Detection and Response Engineer

Andurilindustries · Boston, Massachusetts, United States; Costa Mesa, California, United States; Remote; Seattle, Washington, United States; Washington, District of Columbia, United States · Posted Jul 3, 2026

Apply on company site   Track it in JobSkout

Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

ABOUT THE TEAM

Anduril's Information Security team is looking for a Senior Detection and Response Engineer to focus on building world class defensive controls to protect the infrastructure around our advanced defense technology products. This is a role with wide berth that will have the latitude to design and implement cutting edge security architecture.

WHAT YOU'LL DO

Collaborate with Counter Intelligence and Insider Threat teams to develop key signals and capabilities to identify nefarious activity

Support internal tooling that surfaces detections to partner teams in real time, including API integrations, audit-trail instrumentation, and data-source health

Collaborate with Counter Intelligence, SecOps, Insider Threat and other key stakeholders to architect and implement detection and response frameworks for Anduril’s products, assets, and other custom applications

Build and optimize tailored detection signatures and response automation using detection-as-code principles

Lead threat modeling scenarios with cross-functional partners to understand weaknesses across OT, Cloud, Network, Endpoints, and other key worlds incorporating findings into security controls and/or detection signatures

Lead large-scale baselines of data, collaborating across many teams to emit signals to incorporate into detections, new telemetry ingestion, and/or security controls

Contribute directly to the development and advancement of our detection-as-code, data engineering, automation, and infrastructure capabilities

Design and tune User and Entity Behavior Analytics (UEBA) capabilities — including baselining, anomaly detection, and risk scoring — to surface insider threat and counterintelligence signals across identity, endpoint, and data-access telemetry

Work cross-collaboratively with different teams to mature the detection and response of threat actors in key worlds, developing data baselines, automation, and engineering capabilities to scale this capability across the business

REQUIRED QUALIFICATIONS

Experience programming in one or more general purpose languages (Python, Go, Rust, SQL, etc.)

Experience conducting data analysis in large-scale data lake environments

Experience deploying infrastructure as code (Terraform, CDK, CloudFormation, etc)

Experience working in a traditional software development lifecycle (i.e. Github, CI/CD, unit testing)

Extensive experience utilizing AWS / Azure security controls and services

Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure

Deep understanding of adversarial tradecraft with an emphasis on counterintelligence and insider threat tactics, techniques, and procedures (TTPs)

Strong communication skills, both written and verbal, and experience collaborating with internal and external stakeholders

Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS

Experience working directly with counterintelligence, insider threat, or special investigations teams in a cleared environment

Experience deploying infrastructure using Kubernetes (EKS) and/or Docker containers (ECS)

Experience proactively threat hunting using threat and counter intelligence signals to identify potential risks and weaknesses in telemetry

Although we list out what we generally look for, we are very likely missing other attributes and skills that you have that could make you a great fit, but are not currently listed. Research has shown this especially applies to women and other marginalized groups, who tend to apply if they check 100% of every box, versus men who apply if they hit roughly 60%. The point we’re getting at, it doesn’t hurt to take a chance and apply!

US Salary Range

$166,000 $220,000 USD

The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offer may vary based on (but not limited to) work experience, education and/or training, critical skills, and/or business considerations. Highly competitive equity grants are included in the majority of full time offers; and are considered part of Anduril's total compensation package. Additionally, Anduril offers top-tier benefits for full-…

Apply on company site