Job Description
\nYou will design, build, and maintain detections that identify malicious activity across Stripe's infrastructure, applications, and cloud environments.
\nResponsibilities
\nRequirements
\nPreferred Qualifications
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_c2aaf7ac-804","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Stripe","sameAs":"https://stripe.com/","logo":"https://logos.yubhub.co/stripe.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/stripe/jobs/7827230","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["detection engineering","threat hunting","security operations","SIEM platforms","adversary tradecraft","network-based detections","endpoint-based detections","telemetry analysis","detection/query languages","programming","communication skills"],"x-skills-preferred":["fintech","financial services","malware analysis","reverse engineering","purple team operations","big data platforms","AI/LLM-assisted development tools","agentic automation","detection validation tools","open-source detection content","relevant certifications"],"datePosted":"2026-04-18T15:53:27.161Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Ireland"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"detection engineering, threat hunting, security operations, SIEM platforms, adversary tradecraft, network-based detections, endpoint-based detections, telemetry analysis, detection/query languages, programming, communication skills, fintech, financial services, malware analysis, reverse engineering, purple team operations, big data platforms, AI/LLM-assisted development tools, agentic automation, detection validation tools, open-source detection content, relevant certifications"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_bdf949b3-c66"},"title":"Databricks Enterprise Lead Security Architect - Principal IT Software Engineer","description":"We are seeking a highly skilled Lead Security Architect to join our team within Databricks IT. As a Lead Security Architect, you will be responsible for designing and implementing a secure and scalable architecture to protect our corporate assets. You will focus on key areas of IT security, including Identity and Access Management, Zero Trust architecture, and endpoint security, while also working to secure critical business applications and sensitive data.
\nYour expertise will be crucial in building proactive security strategies that align with our business goals and protect the company from an ever-evolving threat landscape. This position demands deep expertise in security principles and a comprehensive understanding of the entire infrastructure stack and IAM systems to design robust, future-ready security solutions.
\nYou will be instrumental in safeguarding our systems' resilience and integrity against ever-evolving cyber threats. You will play a critical role in shaping our security strategy for modern platforms across AWS, Azure, GCP, network infrastructure, storage, and SaaS solutions, help establish a strong least privilege (PoLP) model, providing specialized IAM expertise, and securely supporting SaaS with sensitive information (NHI).
\nYou will also be a key contributor in building our internal strategy for secure AI development. Additionally, you will support the secure integration of SaaS platforms such as Google Workspace, collaboration tools, and GTM systems, maintaining alignment with enterprise security standards.
\nClose collaboration with cross-functional teams is essential to embed security throughout the technology stack.
\nThe impact you will have:
\nWhat we look for:
\nPay Range Transparency
\nDatabricks is committed to fair and equitable compensation practices. The pay range(s) for this role is listed below and represents the expected salary range for non-commissionable roles or on-target earnings for commissionable roles. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location. Based on the factors above, Databricks anticipates utilizing the full width of the range. The total compensation package for this position may also include eligibility for annual performance bonus, equity, and the benefits listed above.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_bdf949b3-c66","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Databricks","sameAs":"https://databricks.com","logo":"https://logos.yubhub.co/databricks.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/databricks/jobs/8207910002","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Security Architecture","Identity and Access Management","Zero Trust","Endpoint Security","Data Encryption","Data Exfiltration Prevention","Cluster Security","Offensive Security","Non-human Identity Management","IAM Best Practices","Data Loss Prevention","SaaS Proxy Design and Implementation","Cloud Infrastructure Best Practices","Least Privilege Access for Data Security","Guide internal IT on Databricks’ security and compliance certifications","Support incident response, vulnerability management, threat modeling, and red teaming","Stay current on industry trends and emerging threats in GenAI, AI Agentic flow, MCPs","Advise executive leadership on security architecture, risks, and mitigation","Mentor security engineers and developers on secure design and best practices"],"x-skills-preferred":["Terraform","Python","Cursor","Lambda","AWS cloud security","Network security","Data Protection","Appsec","SIEM platforms","XDR","cloud-native threat detection tools","Web application security","OWASP","API security","Secure design and testing","AI-assisted development","Security automation","Scripting/IaC tools","CISSP","CCSP","CEH","AWS Certified Security – Specialty","AWS Certified Solutions Architect – Professional","AWS Certified Advanced Networking – Specialty"],"datePosted":"2026-04-18T15:45:19.828Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Mountain View, California; San Francisco, California"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Security Architecture, Identity and Access Management, Zero Trust, Endpoint Security, Data Encryption, Data Exfiltration Prevention, Cluster Security, Offensive Security, Non-human Identity Management, IAM Best Practices, Data Loss Prevention, SaaS Proxy Design and Implementation, Cloud Infrastructure Best Practices, Least Privilege Access for Data Security, Guide internal IT on Databricks’ security and compliance certifications, Support incident response, vulnerability management, threat modeling, and red teaming, Stay current on industry trends and emerging threats in GenAI, AI Agentic flow, MCPs, Advise executive leadership on security architecture, risks, and mitigation, Mentor security engineers and developers on secure design and best practices, Terraform, Python, Cursor, Lambda, AWS cloud security, Network security, Data Protection, Appsec, SIEM platforms, XDR, cloud-native threat detection tools, Web application security, OWASP, API security, Secure design and testing, AI-assisted development, Security automation, Scripting/IaC tools, CISSP, CCSP, CEH, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, AWS Certified Advanced Networking – Specialty"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_9bf55fe3-b2b"},"title":"Detection & Response Engineer","description":"We are seeking a skilled and proactive Detection & Response Engineer to join our security team. In this critical role, you will be responsible for detecting, investigating, and responding to security incidents across our cloud-native and AI-focused infrastructure.
\nResponsibilities
\nBasic Qualifications
\nPreferred Skills and Experience
\nCompensation and Benefits
\n$200,000 - $340,000 USD
\nBase salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long-term disability insurance, life insurance, and various other discounts and perks.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_9bf55fe3-b2b","directApply":true,"hiringOrganization":{"@type":"Organization","name":"xAI","sameAs":"https://www.xai.com/","logo":"https://logos.yubhub.co/xai.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/xai/jobs/4559148007","x-work-arrangement":"onsite","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":"$200,000 - $340,000 USD","x-skills-required":["cybersecurity principles","attack techniques","defensive strategies","scripting language","SIEM platforms","log analysis tools","cloud environments","network protocols","system administration","common attack vectors"],"x-skills-preferred":["relevant security certifications","threat intelligence platforms","AI/ML security implications","software supply chain security","containerized environments","Kubernetes security","custom security tools","digital forensics","malware analysis"],"datePosted":"2026-04-18T15:23:47.430Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Palo Alto, CA"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"cybersecurity principles, attack techniques, defensive strategies, scripting language, SIEM platforms, log analysis tools, cloud environments, network protocols, system administration, common attack vectors, relevant security certifications, threat intelligence platforms, AI/ML security implications, software supply chain security, containerized environments, Kubernetes security, custom security tools, digital forensics, malware analysis","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":200000,"maxValue":340000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_8ae5b8d5-5a4"},"title":"Security Engineer","description":"As a Security Engineer at Yuno, you will be responsible for embedding security by default across our development and operations workflows.
\nIn this role, you will work closely with Engineering and DevOps teams to design, implement, and maintain secure cloud infrastructure, CI/CD pipelines, and containerized environments.
\nYou will play a key role in strengthening our security posture across AWS and GCP, automating security controls through infrastructure as code, and ensuring compliance with industry standards such as PCI DSS and SOC 2, enabling Yuno to scale securely in the global payments ecosystem.
\nResponsibilities:
\nDesign, build, and maintain secure and scalable internal security solutions and tools using Python to support security operations and strengthen technical controls.
\nImprove and manage security configurations in AWS and GCP (including WAF, Security Hub, IAM policies, SIEM integrations and other critical services) to continuously strengthen our overall cloud security posture and ensure best practices are implemented.
\nImplement and maintain security processes and technical controls that support compliance requirements (e.g., PCI DSS, ISO 27001/27701, SOC 2).
\nCollaborate with different teams on cross-functional security initiatives, providing technical expertise and ensuring alignment with best practices.
\nExplore and evaluate emerging technologies and architectures (e.g., AI integrations) to ensure secure adoption.
\nSkills You Need:
\n4+ years of hands-on experience in security engineering or similar technical security roles.
\nStrong experience designing and developing security tools or internal products to support security operations using Python.
\nSolid knowledge of AWS and GCP security services and configurations.
\nPractical experience working with compliance frameworks (e.g., PCI DSS, ISO 27001/27701, SOC 2) in cloud environments.
\nStrong problem-solving skills and the ability to communicate and collaborate effectively with cross-functional teams.
\nVerbal and written English fluency.
\nPreferred Qualifications:
\nFamiliarity with SIEM platforms and security monitoring tools.
\nExperience with Kubernetes and container security.
\nExperience with infrastructure as code (e.g., Terraform, CloudFormation).
\nFamiliarity with emerging architectures (e.g., serverless, event-driven, AI integrations).
\nExperience embedding security practices across the software development lifecycle, including CI/CD pipelines.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_8ae5b8d5-5a4","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Yuno","sameAs":"https://www.yuno.com/","logo":"https://logos.yubhub.co/yuno.com.png"},"x-apply-url":"https://jobs.lever.co/yuno/f67be624-8969-4967-baec-1d924213a482","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Python","AWS","GCP","PCI DSS","SOC 2","ISO 27001/27701","Cloud security","Infrastructure as code","CI/CD pipelines","Container security"],"x-skills-preferred":["SIEM platforms","Kubernetes","Terraform","CloudFormation","Serverless","Event-driven","AI integrations"],"datePosted":"2026-04-17T13:10:45.504Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"London"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Python, AWS, GCP, PCI DSS, SOC 2, ISO 27001/27701, Cloud security, Infrastructure as code, CI/CD pipelines, Container security, SIEM platforms, Kubernetes, Terraform, CloudFormation, Serverless, Event-driven, AI integrations"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_85f1ada0-78d"},"title":"Security Engineer","description":"We're seeking a Security Engineer at the senior-level or above on our Security Operations team with strong detection engineering experience. You'll design and develop high-fidelity detection content, build and operate the data pipelines that power our security operations, develop automation playbooks that accelerate response, and work across a uniquely diverse telemetry landscape spanning cloud infrastructure, embedded vessel platforms, corporate systems, and operational technology.
\nThis role is heavily weighted toward detection engineering. You should think in terms of adversary behaviour and telemetry coverage, not just alert triage. You'll own detections end-to-end: from identifying gaps in coverage, through designing and testing detection logic, to tuning and validating in production.
\nKey Responsibilities:
\nDesign, build, test, and tune high-fidelity detection rules and analytic queries across endpoint, cloud, network, identity, and DLP telemetry sources
\nDevelop and maintain detection content using detection-as-code practices including version-controlled logic, automated testing, and CI/CD deployment
\nMap detection coverage to MITRE ATT&CK, identify gaps, and prioritise new detection development based on threat intelligence and business risk
\nEngineer correlation rules, behavioural analytics, and anomaly-based detections that minimise false positives while surfacing real adversary tradecraft
\nOwn the detection lifecycle from initial development through production tuning, performance monitoring, and retirement
\nBuild and operate pipelines to ingest, normalise, enrich, and manage security telemetry at scale across diverse data sources, using Terraform and infrastructure-as-code practices to deploy and maintain logging and detection infrastructure
\nDesign and maintain log collection, parsing, and enrichment configurations that ensure the right telemetry is available at the right fidelity for detection and investigation
\nEvaluate and onboard new telemetry sources as Saronic's infrastructure and threat landscape evolve
\nMonitor pipeline health, data quality, and ingestion reliability to ensure detections operate on complete and accurate data
\nDevelop and manage automated response playbooks in SOAR platforms to accelerate containment and reduce analyst toil
\nBuild automation that enriches alerts with contextual data, reducing investigation time and improving analyst decision-making
\nSupport incident response efforts and translate lessons learned into improved detections and playbooks
\nPartner with SOC analysts, Cloud Security, Product Security, and IT teams to close visibility and detection gaps across environments
\nCollaborate with threat intelligence to ensure detection engineering is informed by current adversary TTPs relevant to defence, maritime, and autonomous systems
\nRequired Qualifications:
\n3+ years of hands-on experience in detection engineering, security operations, security automation, or a closely related security engineering role
\nDemonstrated experience designing, testing, and tuning detection rules and analytic queries across production security telemetry (endpoint, cloud, network, identity, or DLP)
\nHands-on experience with SIEM platforms and proficiency with query languages such as SPL, KQL, or equivalent
\nExperience building and operating security data pipelines, including log ingestion, normalisation, enrichment, and data quality management
\nUnderstanding of data engineering concepts including ETL pipelines, data modelling, schema design, and indexing as applied to security telemetry
\nHands-on coding experience in Python, PowerShell, Go, or Rust for security automation, detection tooling, or pipeline development, and familiarity with Terraform for managing detection and logging infrastructure as code
\nUnderstanding of MITRE ATT&CK framework and its application to detection coverage and gap analysis
\nAbility to obtain and maintain a security clearance
\nPreferred Qualifications:
\nExperience in defence, aerospace, robotics, autonomy, or other high-assurance environments
\nExperience with EDR platforms including custom detection rule creation and telemetry analysis
\nExperience with cloud-native detection in AWS and Microsoft 365/Azure
\nExperience using Terraform to deploy and manage security monitoring infrastructure, log pipeline components, or cloud-native security service configurations
\nHands-on experience with incident response, threat hunting, or adversary emulation
\nExposure to embedded Linux, operational technology, or ICS telemetry and detection
\nFamiliarity with NIST SP 800-171, NIST SP 800-53, or CMMC and their logging and monitoring requirements
\nRelevant certifications such as GCIH, GCIA, GCDA, GSOM, OSDA, or OSCP
\nAdditional Information:
\nBenefits: Medical Insurance, Dental and Vision Insurance, Time Off, Parental Leave, Competitive Salary, Retirement Plan, Stock Options, Life and Disability Insurance, Pet Insurance
\nThis role requires access to export-controlled information or items that require 'U.S. Person' status.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_85f1ada0-78d","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictechnologies.com/","logo":"https://logos.yubhub.co/saronictechnologies.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/79424778-76c1-41c6-8385-cba5f6ddc50e","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["detection engineering","security operations","security automation","SIEM platforms","query languages","data engineering","ETL pipelines","data modelling","schema design","indexing","Python","PowerShell","Go","Rust","Terraform","MITRE ATT&CK framework","security clearance"],"x-skills-preferred":["EDR platforms","cloud-native detection","incident response","threat hunting","adversary emulation","embedded Linux","operational technology","ICS telemetry","NIST SP 800-171","NIST SP 800-53","CMMC","GCIH","GCIA","GCDA","GSOM","OSDA","OSCP"],"datePosted":"2026-04-17T12:56:57.672Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"detection engineering, security operations, security automation, SIEM platforms, query languages, data engineering, ETL pipelines, data modelling, schema design, indexing, Python, PowerShell, Go, Rust, Terraform, MITRE ATT&CK framework, security clearance, EDR platforms, cloud-native detection, incident response, threat hunting, adversary emulation, embedded Linux, operational technology, ICS telemetry, NIST SP 800-171, NIST SP 800-53, CMMC, GCIH, GCIA, GCDA, GSOM, OSDA, OSCP"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_55d2bc34-fc1"},"title":"CyberSecurity Engineer, SOC Analyst","description":"About Mistral AI\nAt Mistral AI, we believe in the power of AI to simplify tasks, save time, and enhance learning and creativity. Our technology is designed to integrate seamlessly into daily working life.
\nRole Summary\nMistral AI is looking for a Security Operations Center (SOC) Analyst to monitor, defend and respond to threats across our rapidly evolving AI ecosystem. You will treat security telemetry as the core of our active defense. Your objective is to ensure the continuous security of our diverse environment, spanning IT, Engineering, Science, Compute and Infrastructure by building robust detection mechanisms and moving swiftly from alert to automated response.
\nResponsibilities\n• Partner with engineering and platform teams to ensure the comprehensive centralization of security logs across all Mistral environments.\n• Design, test, and continuously tune high-fidelity alert scenarios and correlation rules to detect anomalous behavior while minimizing alert fatigue.\n• Operationalize Cyber Threat Intelligence (CTI), monitoring the landscape for threats specific to AI and cloud infrastructure, and integrating actionable intel directly into our detection pipelines.\n• Conduct rigorous, deep-dive investigations into security alerts, tracking root causes, identifying potential lateral movement, and determining impact.\n• Drive the lifecycle of security incidents from containment to remediation, and coordinate cross-functional crisis management during high-severity events.
\nAbout You\n• 3+ years of experience in a Security Operations Center (SOC), Incident Response, or Threat Hunting role, ideally within a cloud-native or fast-paced tech environment.\n• Deep understanding of the threat landscape, the MITRE ATT&CK framework, and the methodologies required to protect high-value infrastructure and intellectual property.\n• Strong experience writing complex queries (e.g., KQL, Splunk SPL, or similar) and leveraging SIEM platforms to build out correlation rules and detection logic.\n• Ability to write practical automation scripts in Python or Go to interact with security APIs, enrich alert context, and streamline response workflows.\n• Proven experience participating in or leading incident response efforts, demonstrating a calm, methodical approach to high-pressure crisis management.
\nHiring Process\n• Introduction call - 30 min\n• Hiring Manager interview - 30 min\n• Technical Rounds - Dee-Dive interview - 55 min - Panel interview - 1h15\n• Culture-fit discussion - 30 min\n• References
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_55d2bc34-fc1","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Mistral AI","sameAs":"https://mistral.ai","logo":"https://logos.yubhub.co/mistral.ai.png"},"x-apply-url":"https://jobs.lever.co/mistral/f9782b09-ca3c-4bfc-ba7a-349551ef9a82","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Security Operations Center (SOC)","Incident Response","Threat Hunting","KQL","Splunk SPL","SIEM platforms","Python","Go","security APIs","alert context","response workflows"],"x-skills-preferred":[],"datePosted":"2026-04-17T12:46:59.040Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Paris"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Security Operations Center (SOC), Incident Response, Threat Hunting, KQL, Splunk SPL, SIEM platforms, Python, Go, security APIs, alert context, response workflows"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_1d0184f1-be6"},"title":"Security Engineer","description":"About the Role
\nWe're hiring our first Security Engineer to own the process of safeguarding our systems, infrastructure, applications, and data. As the first security hire, you will build out our security operations and vulnerability management process for our AI gateway platform. You'll implement programs, run tooling, ship security fixes, and drive remediation across our stack. You’ll be responsible for all aspects of ensuring the security of our platform and users. This isn't a compliance paperwork role; it's a hands-on security position with direct impact on how we protect millions of API requests daily. You'll work closely with engineering and senior leadership to ship security improvements that actually matter.
\nWhat You'll Do
\nAbout You
\nBonus Points
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_1d0184f1-be6","directApply":true,"hiringOrganization":{"@type":"Organization","name":"OpenRouter","sameAs":"https://jobs.ashbyhq.com","logo":"https://logos.yubhub.co/openrouter.com.png"},"x-apply-url":"https://jobs.ashbyhq.com/openrouter/188d9898-d4e0-4895-8203-86063af0ee41","x-work-arrangement":"Remote","x-experience-level":"mid","x-job-type":"Full time","x-salary-range":null,"x-skills-required":["cloud security","vulnerability scanning","SIEM platforms","vulnerability scanners","AI tools","endpoint security tooling"],"x-skills-preferred":["AI/ML infrastructure","inference platforms","Python scripting","healthcare data handling","BAA compliance"],"datePosted":"2026-03-09T09:48:01.907Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Remote (US)"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"cloud security, vulnerability scanning, SIEM platforms, vulnerability scanners, AI tools, endpoint security tooling, AI/ML infrastructure, inference platforms, Python scripting, healthcare data handling, BAA compliance"}]}