Sigma Computing

SaaS

SeniorSecurityEngineerII–ThreatDetection&Response

$210–240k New York, New York, United States

The Brief

“Senior Security Engineer II – Threat Detection & Response at Sigma Computing. Skills: Threat Detection, Incident Response, Security Engineering, Cloud Security. Develop adversary response strategy. Map organizational risks to threat actor TTPs”

What You'll Achieve.

Reduce risk and improve resilience at scale; Ensure security is 'baked in' to the development lifecycle; Neutralize architectural weaknesses before deployment; Ensure alerting logic evolves in lockstep with new exploitation techniques; Ensure Sigma remains at the forefront of industry-standard security controls; Reduce the manual burden on IT and Ops

Industry & Context.

SaaS

Problems you'll solve

Reduce risk and improve resilience at scale; Bridge the gap between Cyber Threat Intelligence and actionable defense; Shape security architecture; Identify and neutralize architectural weaknesses; Ensure alerting logic evolves; Identify gaps in defense-in-depth strategy; Reduce manual burden on IT and Ops

Eligibility Requirements

In-office work environment in SF, NYC, and London

What They're Looking For.

Must Have

7+ years in security, 5+ years deeply focused on detection engineering, incident response, or threat hunting in cloud-native environments, track record of working in fast paced SaaS environments, moving organizations from reactive IR to threat-informed defense, Bachelor's or Master's degree in Computer Science, Cyber Security, or a related field, Hands-on proficiency in securing AWS/GCP/Azure + modern Identity Stack, experience with Kubernetes security, experience with Terraform/IaC, coding ability to build automations, security pipeline, detection as code etc., Deep understanding of cloud IAM attack paths, token/session abuse, API threats, and data exfiltration patterns, CI/CD for detections, Experience designing and operating telemetry pipelines (normalization, correlation, data quality, schema strategy), incident response leadership for high-severity events in production environments, Deep familiarity with threat intelligence frameworks (MITRE ATT&CK), ability to convert raw intel into actionable detection/prevention strategies, Proven experience running incident response tests, breach and attack simulations (BAS), or redlue team exercises, Deep expertise in security tooling across SIEM, EDR, CNAPP, WAF, CASB, and Data Security platforms, judgment to know when to buy vs build, The ability to translate complex technical threats into clear, actionable guidance for both technical peers and executive leadership

Nice to Have

Relevant certifications (nice-to-have): GCIA, GCIH, GCTI, CISSP, CCSP, Contributions to open-source security projects or published research (nice-to have)

What You'll Do.

Develop adversary response strategy

Map organizational risks to threat actor TTPs

Act as Subject Matter Expert

Guide partners in implementing security controls

Lead threat modeling sessions

Build detection library

Monitor security landscape

Design incident response simulations

Lead high-severity security incidents

Manage executive communication

Architect SOAR workflows

How You'll Work.

Team & Collaboration

Partnering across Security, Platform, Product, and Engineering; Act as Subject Matter Expert to Infrastructure, Engineering, and security teams; Guide partners in implementing proactive security controls; Lead and build collaborative threat modeling sessions; Educate non-security teams on their roles during a crisis

Communication Scope

Translate complex technical threats into clear, actionable guidance for both technical peers and executive leadership

Free ATS check

Applying for this Senior Security Engineer II – Threat Detection & Response role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 42 detected

Core

Incident Response ×5

Threat hunting ×4

Required

Coding ×3

Detection engineering ×3

Security architecture ×3

SOAR workflows ×3

Telemetry pipeline design ×3

Incident response leadership ×3

Breach and attack simulations ×3

Red team exercises ×3

Threat Detection ×2

Security Engineering ×2

Nice to have

Cloud

Identity

Application

Data attack paths

AWS

GCP

Azure

Identity Stack

Kubernetes security

Terraform

Role Details

Work Mode

in-office

Experience

7–10 yrs

Education

Bachelor's or Master's degree in Compute

Salary Band

200k+

How to Apply on Greenhouse

Create a Greenhouse profile before applying — it saves time across multiple applications.
Upload your resume as a PDF; the parser handles it better than Word.
Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
Enable email notifications to track application status in real time.

ANONYMOUS · UNFILTERED

What do employees actually say about Sigma Computing?

Real rants from real employees. Read before you apply.

Read Company Rants →