Detection & CorpSec Engineer (Remote)

📋 Description

• • Build and maintain a SIEM system to collect and analyze logs from corporate and production environments, writing and deploying detection rules to identify malicious behavior.
• • Design and deploy canary tokens and early warning mechanisms to detect threats before they compromise critical assets.
• • Investigate security incidents end-to-end, including malware analysis, log review, exfiltration assessment, and timeline reconstruction, while building scalable runbooks to improve response capabilities.
• • Partner with the IT team to define and enforce security standards across the employee device fleet, including endpoint protection, managed device requirements, OS compliance, and VPN access controls.
• • Lead the proof-of-concept and implementation of Zero-Trust VPN and other corporate security infrastructure to enhance organizational security posture.
• • Serve as a trusted security advisor to non-technical teams across the organization, providing guidance on security best practices and risk mitigation.
• • Collaborate with existing security engineers to extend detection coverage from corporate environments into production systems.
• • Utilize Python to write production-grade code that integrates with security tooling and is reviewed alongside software engineering teams.
• • Continuously improve detection capabilities by leveraging AI tools to automate security workflows and increase operational efficiency.
• • Conduct threat modeling to anticipate potential attack vectors and strengthen preventative controls across corporate and production environments.
• • Ensure identity management and access control enforcement are aligned with organizational security policies and industry standards.
• • Work within Quora’s coordination hours (Mon-Fri: 9am-3pm Pacific Time) to enable real-time collaboration and incident response across time zones.
• • Stay current with emerging threats and security technologies, applying practical, builder-oriented solutions where commercial tools fall short.
• • Maintain documentation and operational clarity for security systems, ensuring knowledge sharing and continuity across the small, high-ownership security team.
• • Support both Quora.com and Poe.com platforms by ensuring robust corporate and production security coverage across globally distributed teams.
• • Contribute to a culture of transparency, experimentation, and shared ownership by actively participating in security reviews, incident post-mortems, and process improvements.