Senior Security Engineer, Detection and Response

📋 Description

• • Build and lead the detection engineering program for a fast-growing fintech, designing and maintaining alerting pipelines that drive triage and incident response for security events across corporate and infrastructure environments.
• • Author, test, and refine security detections using SIEM and MDR platforms, ensuring high-fidelity alerts that reduce false positives and improve response efficiency.
• • Investigate and respond to security incidents end-to-end, including containment, root cause analysis, remediation, and post-incident reporting to strengthen defenses.
• • Govern and secure enterprise AI platforms (Claude Enterprise, OpenAI) by implementing and enforcing SSO/SCIM integrations, audit logging, usage policies, and prompt exfiltration controls.
• • Leverage LLM-augmented workflows daily to accelerate detection authoring, automate phishing triage, analyze security logs, and build internal tools that enhance team productivity and response speed.
• • Partner with IT to harden SaaS applications and endpoint devices using Iru (Kandji) MDM and CrowdStrike Falcon EDR, enforcing device trust, configuration compliance, and IAM policies.
• • Mature the company’s Data Loss Prevention (DLP) program across SaaS, email, endpoints, and AI-driven communication channels to prevent unauthorized data exfiltration.
• • Collaborate cross-functionally to embed security controls into corporate tooling and workflows, ensuring security is integrated into product and operational layers from day one.
• • Contribute to the ongoing evolution of Monarch’s security posture, building upon an existing SOC 2 Type 2 compliance foundation and expanding into advanced detection, automation, and AI-driven security operations.
• • Act as the first dedicated Detection and Response engineer within the Security team, setting the tone and technical direction for future hires in this function.
• • Translate emerging threats and AI capabilities into proactive security measures, ensuring Monarch remains ahead of threats targeting financial data and corporate AI usage.
• • Maintain vigilance over corporate AI usage patterns, detecting misuse, policy violations, or anomalous behavior through automated monitoring and AI-augmented analysis.
• • Document security workflows, detection rules, and incident response playbooks to ensure knowledge sharing and operational continuity within the team.
• • Stay current with evolving threat landscapes in fintech and AI security, adapting detection strategies to new attack vectors targeting cloud environments and enterprise AI platforms.
• • Advocate for security-first design in all corporate tooling and AI adoption, balancing usability with risk mitigation for non-technical teams.
• • Participate in on-call rotations for critical security events, providing timely response and leadership during high-severity incidents.