True Anomaly

space

ThreatDetection&ResponseEngineerIII

$115–165k Denver, Colorado, United States; Long Beach, California, United States

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Mid candidates.

The Brief

“Threat Detection & Response Engineer III at True Anomaly. Skills: Threat Detection, Response Engineering, Security Operations, Detection Engineering, Incident Response, Threat Hunting, SIEM, EDR, Scripting. build scalable processes to support future team growth. Design and implement custom security detections across corporate and cloud environments”

What You'll Achieve.

deliver decisive capabilities for space superiority; secure the space environment; counter threats from the ultimate high ground; improve response efficiency; reduce noise; improve detection fidelity; prioritize high-signal alerts

Industry & Context.

space

Problems you'll solve

Proactively hunt for threats; leverage threat intelligence to anticipate emerging adversary TTPs; improve response efficiency; reduce noise; improve detection fidelity; prioritize high-signal alerts

Eligibility Requirements

On-call rotation participation, including after-hours participation, is required for incident response coverage, Must be comfortable working under pressure during active security incidents, U. S. citizen, lawful permanent resident of the U. S. , protected individual as defined by 8 U. S. C. 1324b(a)(3), or eligible to obtain the required authorizations from the U. S. Department of State., Ability to obtain and maintain a security clearance

What They're Looking For.

Must Have

3+ years of experience in cybersecurity, at least 2 years focused on security operations, detection engineering, incident response, or threat hunting, Experience in building or tuning security detections, Familiarity with risk-based alerting and alert tuning, including strategies to reduce noise, improve detection fidelity, and prioritize high-signal alerts, Familiarity with EDR platforms, including basic alert triage and response actions, Working knowledge of Windows, MacOS, or Linux endpoint security and common attack techniques, Familiarity with SIEM platforms and log analysis (e.g., Splunk, Elastic, or similar), Basic understanding of common attack vectors, TTPs, and security frameworks such as MITRE ATT&CK and the Cyber Kill Chain, Experience with scripting (Python, PowerShell, or Bash) for automation or analysis tasks, Clear verbal and written communication skills

Nice to Have

Active TS/SCI security clearance or ability to obtain and maintain a security clearance, Knowledge of digital forensics and malware analysis techniques, Experience building or significantly maturing a detection and response program, Experience working in Azure Government Cloud (Azure GovCloud) environments, Experience with cloud security monitoring in AWS, GCP, or Azure commercial environments, Familiarity with CMMC, FedRAMP, NIST 800-53, or other federal compliance frameworks, Experience with Detections-as-Code paradigms, GitOps, CI/CD, etc, Experience participating in or supporting red team/purple team exercises

What You'll Do.

build scalable processes to support future team growth

Design and implement custom security detections across corporate and cloud environments

document findings and lessons learned

Proactively hunt for threats

leverage threat intelligence to anticipate emerging adversary TTPs

Administer and optimize EDR and SIEM

integrate log sources to enhance visibility and correlation

Build automation and orchestration workflows to improve response efficiency

Partner with cross-functional teams (IT

communicate technical findings to diverse stakeholders

On-call rotation participation

including after-hours participation

is required for incident response coverage

How You'll Work.

Team & Collaboration

Partner with cross-functional teams (IT, Engineering, Legal, Compliance); communicate technical findings to diverse stakeholders; Collaborative culture with experienced security professionals

Communication Scope

Clear verbal and written communication skills; communicate technical findings to diverse stakeholders

Full Job Description

Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it. OUR MISSION True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U. S. and its Allies to secure the space environment and counter threats from the ultimate high ground. OUR VALUES Be the offset. We create asymmetric advantages with creativity and ingenuity. What would it take? We challenge assumptions to deliver ambitious results. It’s the people. Our team is our competitive advantage and we are better together. YOUR MISSION As a Threat Detection build scalable processes to support future team growth Design and implement custom security detections across corporate and cloud environments, leveraging frameworks like MITRE ATT document findings and lessons learned Proactively hunt for threats and leverage threat intelligence to anticipate emerging adversary TTPs Administer and optimize EDR and SIEM platforms; integrate log sources to enhance visibility and correlation Build automation and orchestration workflows to improve response efficiency Partner with cross-functional teams (IT, Engineering, Legal, Compliance) and communicate technical findings to diverse stakeholders Qualifications 3+ years of experience in cybersecurity, with at least 2 years focused on security operations, detection engineering, incident response, or threat hunting Experience in building or tuning security detections Familiarity with risk-based alerting and alert tuning, including strategies to reduce noise, improve detection fidelity, and prioritize high-signal alerts Familiarity with EDR platforms, including basic alert triage and response actions Working knowledge of Windows, MacOS, or Linux endpoint security and common attack techniques Familiarity with SIEM platforms and log analysis (e.g., Splunk, Elastic, or similar) Basic understanding of

Free ATS check

Applying for this Threat Detection & Response Engineer III role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 38 detected · ranked by frequency

Security Operations ×5

Detection Engineering ×5

Incident Response ×5

Threat Hunting ×5

Scripting ×5

EDR platforms ×4

digital forensics ×4

malware analysis ×4

Detections-as-Code ×4

SIEM ×3

EDR ×3

security detections ×3

log analysis ×3

endpoint security ×3

attack techniques ×3

attack vectors ×3

cloud security monitoring ×3

Threat Detection ×2

Response Engineering ×2

MITRE ATT&CK

Python

PowerShell

Bash

Azure Government Cloud

AWS

GCP

Azure

GitOps

CI/CD

risk-based alerting

alert tuning

threat intelligence

BEHAVIOURAL

creativityingenuityambitious resultsteamworkadaptabilityautonomyownership

Role Details

Experience 3–5 yrs

Level Mid

Work Mode Onsite

Category cybersecurity

Salary Band 100k-150k

AI-Extracted Insights

Domain Areas

space-superiorityspace-environmentspace-based-interceptorscybersecuritysecurity-operationsdetection-engineeringincident-responsethreat-hunting

Certifications

CMMCFedRAMPNIST 800-53

How to Apply on Greenhouse

Create a Greenhouse profile before applying — it saves time across multiple applications.
Upload your resume as a PDF; the parser handles it better than Word.
Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
Enable email notifications to track application status in real time.

ANONYMOUS · UNFILTERED

What do employees actually say about True Anomaly?

Real rants from real employees. Read before you apply.

Read Company Rants →