Threat Detection Engineer

Job summary

The role involves developing and maintaining runtime security policies for Tetragon, a Kubernetes-aware security tool that enhances security posture through real-time observability and enforcement. The engineer will focus on monitoring system behaviors and creating policies based on threat intelligence and vulnerability disclosures.

Qualifications

• Minimum of 3 years of experience in threat and/or vulnerability research.
• Minimum of 3 years of experience in developing security detections at scale across various environments.
• Minimum of 3 years of experience in Linux system security, including capabilities and LSMs.
• Strong written and verbal communication skills.

Responsibilities

Preferred Qualifications

• Develop and maintain Tetragon runtime security policies to provide visibility of suspicious activities and protect against emerging threats.
• Design frameworks and architectures for customers to easily consume policies and assess their security posture.
• Monitor vulnerability disclosures and threat intelligence to inform policy development.
• Collaborate with software engineers to enhance Tetragon security capabilities.
• Support and deploy Tetragon security policies in production environments, interacting with solution architects and customers as needed.
• Publish content and deliver presentations based on work.
• Experience with eBPF and its security applications.
• Familiarity with the cloud-native ecosystem, including containers and Kubernetes, and their Linux implementations.

Education

• Not specified.

Tools

• Not specified.