Tech Stack

Description

You will lead the Investigations Incident Response team at Airbnb, defining and executing new approaches to detecting, containing, and mitigating security threats. You'll own incident response outcomes, drive automation and engineering scale, and serve as a key voice to senior leadership.

Requirements

• 9+ years industry experience in threat detection and incident response
• 3-5 years in engineering management
• Experience shaping or evolving incident response programs in complex environments
• Exceptional people management and mentorship skills
• Strong understanding of attacker behavior and frameworks (e.g., MITRE ATT&CK)
• Experience with EDR, SIEM, cloud environments, and investigation workflows
• Experience in cloud-native environments (AWS, GCP, Azure)
• Ability to analyze ambiguous situations and make sound decisions
• Comfort partnering with engineering teams to build scalable solutions
• Ability to operate at strategic and tactical levels
• Experience defining team strategy, priorities, and operating models
• Strong judgment in risk assessment, escalation, and trade-offs
• Excellent communication skills across technical and executive audiences

Responsibilities

• Lead and mentor a team of ~5+ senior engineers
• Partner with Security Platform and Detection Engineering teams to enhance telemetry, context, and response capabilities
• Coach and develop team members
• Act as senior escalation point during high-severity incidents
• Ensure consistent, high-quality investigations with strong root cause analysis
• Establish clear priorities balancing speed, depth, and risk reduction
• Improve escalation paths, ownership clarity, and cross-functional coordination
• Use incident data to influence security priorities and investment decisions
• Partner with Information Security teams to share incident learnings
• Work with infrastructure, product, and engineering teams to drive remediation
• Define and track key metrics (MTTD, MTTR, severity, recurrence)
• Communicate during incidents to senior and executive leadership