🛠 Tech Stack

💼 About This Role

You'll engineer detection workflows and investigate insider threats to protect Palantir's global assets. Your work directly impacts mission success by making it difficult for adversaries to compromise our network. This role emphasizes detection and response with a strong focus on insider risk.

🎯 What You'll Do

• Engineer end-to-end detection and investigation workflows
• Develop alerting strategies for malicious or anomalous behavior
• Dissect network, host, memory, and other artifacts
• Partner with InfoSec team to lead changes in defense posture

📋 Requirements

• 3+ years security experience in at least one major platform
• Proficiency in Python, PowerShell, or similar
• Familiarity with endpoint telemetry and log sources
• Experience with common SIEM/SOAR platforms and queries

✨ Nice to Have

• Strong background in forensics or threat intelligence
• Deep exposure in Incident Response or Detection Engineering
• Desire to contribute to security community (talks, tools, etc.)

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Phone Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min