WHOOP
Information Security
SecurityDetectionEngineer
Neural analysis suggests this role is
optimal for Mid candidates.
“Security Detection Engineer at WHOOP. Skills: Detection Engineering, Threat Detection, Security Operations, Cloud Security, Identity Security, Endpoint Security, Application Security, Scripting, Data Analysis, Machine Learning. Design, build, and scale high-signal detections across cloud, identity, endpoint, network, and application layers using Detection-as-Code principles. Develop and maintain detection logic aligned to real-world attacker behavior and frameworks such as MITRE ATT&CK across mo”
What You'll Achieve.
high-fidelity, scalable detection capabilities that protect millions of members’ biometric and health data; depth of coverage, signal precision, and resilience against modern attacker tradecraft; reduce false positives; improve detection health; reduce noise; enhance triage and investigation workflows
Industry & Context.
analytical mindset with a systems-thinking approach to reducing noise and increasing signal fidelity
on-call rotation
What They're Looking For.
Must Have
4+ years of hands-on experience in Information Security, with a focus on detection engineering, threat detection, or security operations, Demonstrated experience writing and tuning detections across cloud, identity, endpoint, or application environments, scripting skills in a scripting language such as Python, Go, or PowerShell for automation and tool development, Ability to operate effectively in a fast-paced, high-growth environment, analytical mindset with a systems-thinking approach to reducing noise and increasing signal fidelity, Experience supporting incident response investigations and participating in on-call rotations
Nice to Have
Experience building detective controls for consumer-facing platforms or detecting authentication and API abuse at scale is a plus, Familiarity with applying data analysis or machine learning techniques to security detection or alert triage is a plus, Bachelor’s degree in Computer Science, Information Security, or a related technical field, and/or relevant security certifications are a plus
What You'll Do.
and scale high-signal detections across cloud
and application layers using Detection-as-Code principles
Develop and maintain detection logic aligned to real-world attacker behavior and frameworks such as MITRE ATT&CK across modern security platforms
Translate threat intelligence into actionable detections and validate effectiveness through adversary emulation and testing
Build behavioral detections to protect against threats such as account takeover
and data exfiltration
Continuously improve detection quality by tuning alerts
reducing false positives
and implementing automated enrichment and triage
Define and track detection KPIs (e. g.
MTTD) and implement processes to measure and improve detection health
Support and lead incident investigations
including containment
and post-incident detection improvements
Contribute to the on-call rotation while proactively reducing operational overhead through automation
Partner with Engineering
and GRC to ensure systems launch with monitoring and detection coverage
Map detections to threat models
identify visibility gaps
and continuously improve coverage as the environment scales
Explore and apply advanced analytics and machine learning techniques to improve detection fidelity
and enhance triage and investigation workflows
Stay ahead of evolving threats by researching emerging attack techniques and incorporating learnings into detection strategy
How You'll Work.
Team & Collaboration
Partner with Engineering, IT, Infrastructure, Product, and GRC to ensure systems launch with monitoring and detection coverage; collaborate with engineers and explain detection strategy clearly to both technical and non-technical stakeholders
Communication Scope
Effective communicator; explain detection strategy clearly to both technical and non-technical stakeholders
Full Job Description
## Description At WHOOP, we’re on a mission to unlock human performance. WHOOP empowers members to perform at a higher level through a deeper understanding of their bodies and daily lives. WHOOP is seeking a Security Detection Engineer to serve as a key technical contributor within our Information Security team, reporting to the Information Security Manager. In this role, you will drive the design and evolution of high-fidelity, scalable detection capabilities that protect millions of members’ biometric and health data. You will help define our detection engineering strategy across cloud, identity, endpoint, and application environments, ensuring depth of coverage, signal precision, and resilience against modern attacker tradecraft. This is an opportunity to shape a growing detection program within a rapidly evolving Information Security team. ## RESPONSIBILITIES As a member of the team, you will: Design, build, and scale high-signal detections across cloud, identity, endpoint, network, and application layers using Detection-as-Code principles. Develop and maintain detection logic aligned to real-world attacker behavior and frameworks such as MITRE ATT&CK across modern security platforms. Translate threat intelligence into actionable detections and validate effectiveness through adversary emulation and testing. Build behavioral detections to protect against threats such as account takeover, credential abuse, API misuse, automation attacks, privilege escalation, and data exfiltration. Continuously improve detection quality by tuning alerts, reducing false positives, and implementing automated enrichment and triage. Define and track detection KPIs (e.g., precision, recall, false positive rate, MTTD) and implement processes to measure and improve detection health. Support and lead incident investigations, including containment, root cause analysis, and post-incident detection improvements. Contribute to the on-call rotation while proactively reducing operational overhe
Applying for this Security Detection Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about WHOOP?
Real rants from real employees. Read before you apply.