Senior Application Threat Detection Engineer

Description

We are seeking a Senior Application Threat Detection Engineer to join the Platform Security Group.

This is a senior, hands-on role with end-to-end ownership over application layer threat detection in a high-scale SaaS environment. The role combines real-time alert triage, deep application security expertise, data-driven detection engineering and production-grade development.

You will identify, investigate, and mitigate threats across the application and API layers while building scalable detection mechanisms using large-scale telemetry and behavioral analysis.

About The Role

Detection Ownership & Alert Triage

• Own security alerts from triage through investigation and resolution.
• Lead technical analysis of suspicious activity and potential incidents.
• Perform root cause analysis across application, API and behavioral layers.
• Improve detection coverage and reduce false positives using data-driven refinement.
  
  

• Design and implement detections for API abuse and misuse, Account Takeover (ATO), Authorization bypass attempts, Bot and automation abuse
• Conduct proactive threat hunting across large-scale telemetry datasets.
• Translate findings into scalable, production-ready detection logic.
  
  

• Write complex, performance-optimized SQL queries on large datasets.
• Build detection logic leveraging historical state and behavioral patterns.
• Design and improve data pipelines supporting security analytics.
• Ensure data integrity, validation and operational reliability.
  
  

• Develop internal services, automation frameworks and detection tooling.
• Contribute production-grade code in Python and/or JavaScript.
• Integrate detection logic into enforcement and mitigation systems.
  
  

• 5+ years of experience
• Advanced SQL proficiency (mandatory).
• Solid programming skills in Python and/or JavaScript (mandatory).
• Solid Application Security experience, API security and application-layer threat detection.
• Experience building or implementing security detections.
• Experience triaging and investigating security alerts in production environments.
• Exposure to behavioral detection or ML-based detection systems.
  
  

• Experience working in a SaaS company.
• Hands-on experience deploying and tuning WAF solutions.
• Development experience in backend services or production systems.
• Experience working in cloud environments (AWS/GCP).
• Background in leading initiatives or mentoring others.