🛠 Tech Stack

💼 About This Role

You'll lead and evolve Pure's Security Operations function across Detection Engineering, Threat Intelligence, and Incident Response. You'll build a high-signal detection and response system from telemetry to actionable alerts. This role sits at the intersection of detection, incident response, and platform security.

🎯 What You'll Do

• Lead detection engineering and CIDR functions across threat detection and response workflows
• Build and maintain a detection inventory categorized by threat type and MITRE mapping
• Drive continuous validation through red team, purple team, and atomic testing
• Oversee telemetry ingestion into Splunk and SOAR pipelines

📋 Requirements

• 10+ years in cybersecurity with 5+ years in detection or incident response leadership
• 5+ years of people management experience including direct management of security engineering teams
• Deep expertise with SIEM (Splunk), SOAR (Tines, XSOAR), and EDR (CrowdStrike)
• Experience with detection-as-code practices, version control, and CI/CD pipelines