Senior Detection Engineer

The Trade Desk is changing the way global brands and their agencies advertise to audiences around the world. How? With a media buying platform that helps brands deliver a more insightful and relevant ad experience for consumers - and sets a new standard for global reach, accuracy, and transparency. We are proud of the culture we have built. We value the unique experiences and perspectives that each person brings to The Trade Desk, and we are committed to fostering inclusive spaces where everyone can bring their authentic selves to work every day.

So, if you are talented, driven, creative, and eager to join a dynamic, globally-connected team, then we want to talk!

WHAT WE DO:

The SPIDER (Security Privacy Incident Detection Engineering & Response) team at The Trade Desk strives to protect the people, process, and technology used to further our goals for the open internet. We leverage engineering and communication skills in concert with deep security expertise to improve our detection and response capabilities in a highly dynamic environment. The detection engineering function works closely on a daily basis with the incident response team as they are the direct consumers of their work. As a team, we value integrity, accountability, collaboration and development all while having a proactive approach to solving problems with a defensive and offensive mindset.

WHAT YOU'LL DO:

• Partner with the Incident Response, Engineering, and Product Management teams to engineer new detections and high-quality alerting mechanisms to improve response and adapt to the ever-evolving threat landscape.
• Build and maintain a detection and response pipeline including log collection, data processing and ingestion, detection content development, and alert/case management.
• Consume security assessments produced by Infrastructure Security and Application Security and develop detections for identified abuse-cases.
• Develop automations to enrich and respond to security alerts.
• Identify, prioritize, and remediate logging and visibility gaps.
• Identify trends and build observability into areas that need it.
• Consult on technology initiatives to provide industry best-practice as a baseline for security observability and detections.
• Support our internal customers through world-class communication and customer service.
• Proactively improve our security frameworks, documentation, tools, processes, and methodologies.

WHO YOU ARE:

• Bachelor's degree in related field or equivalent years of experience required. Certifications in Cybersecurity or related strongly preferred.
• 5+ years of experience in a dedicated cybersecurity role, or a combination of equivalent information technology experience, training, and education.
• Experience working with telemetry from a wide variety of sources including Endpoint Detection and Response (EDR) Data Loss Prevention (DLP), SaaS applications, databases, identity providers, and cloud platforms.
• Proficiency in at least one general purpose programming language.
• Experience building threat detections for large cloud infrastructures and workloads running in Kubernetes
• Experience with at least one major public cloud provider, such as AWS, Azure, or GCP.
• Experience with SIEM, logging, and query development in the security context.
• Experience working with code to automate redundant tasks and integrating with new tools and technology relatively quickly.
• The ability to relay the same information to a developer, accountant, and executive in a tailored fashion.
• Experience working with code to automate redundant tasks and integrating with new tools and technology relatively quickly.
• Experience working across differing but complimentary disciplines such as IT, Network, Database, Engineering/Dev, Product Security, Compliance, etc.

We do not expect all applicants will have skills that match a job description exactly. We strongly encourage applicants with alternative experiences to also apply.

#LI-TP1

The Trade Desk does not accept unsolicited resumes from search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of The Trade Desk. The Trade Desk is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.

[LA JOBS ONLY] The Trade Desk will consider qualified applicants with criminal histories for employment in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring, Ordinance No. 184652.

[SF JOBS ONLY] Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.