We’re not just building better tech. We’re rewriting how data moves and what the world can do with it. With Confluent, data doesn’t sit still. Our platform puts information in motion, streaming in near real-time so companies can react faster, build smarter, and deliver experiences as dynamic as the world around them.
It takes a certain kind of person to join this team. Those who ask hard questions, give honest feedback, and show up for each other. No egos, no solo acts. Just smart, curious humans pushing toward something bigger, together.
One Confluent. One Team. One Data Streaming Platform.
We are looking for an experienced security engineer to join our infrastructure security engineering team with a strong focus on detection and response. You will have a unique opportunity to leverage your threat detection and response experience and build some of the foundational systems and services to keep our infrastructure free from malicious actors and threats.
You will partner closely with all engineering teams, IT administrators, and compliance analysts to ensure that we maintain sufficient visibility into our environments and develop effective programs and practices to ensure that our environments are always secure. Tooling and automation will be key to success as we scale our environments to meet customer demand.
We intend to be the world's best, fastest, and most complete stream processing service built by an excellent team, all while having fun - come join us on the journey!
What You Will Do:
- Collaborate with engineering teams for building and setting up pipelines needed to gather relevant security telemetry.
- Build and maintain an effective and scalable security monitoring infrastructure solution.
- Develop detection strategies to identify anomalous activity and ensure that our critical infrastructure and services operate in a safe environment.
- Triage alerts and drive security incidents to closure while reducing its potential impact to Confluent.
- Build processes and workflows to triage security alerts and respond to real incidents.
- Research new threat attack vectors and ensure that our detection and response capability is in line with the current threat landscape.
- Proactively improve the quality of our detection rules and strive to eliminate classes of issues by working directly with engineering teams.
- Contribute to strategy, risk management and prioritization for all efforts around detection and response.
What You Will Bring:
- 8+ years of relevant industry experience.
- Strong domain knowledge in security incident detection and response.
- Hands-on experience in instrumenting and deploying telemetry solutions to ensure visibility in large-scale, heterogenous deployments.
- Demonstrated experience with effective incident response and containment practices, preferably in a cloud-first environment.
- Experience with operating open-source and/or commercial solutions for logging and security event management.
- Decision-maker with the ability to operate with freedom and autonomy.
- Experience working with distributed teams and other cross-functional stakeholders.
- Ability to manage competing priorities and workload.
- Ability to script or code fluently in an interpreted language.
- Experience with serverless deployments in AWS, GCP, or Azure is a plus.
Ready to build what's next? Let’s get in motion.
Come As You Are
Belonging isn’t a perk here. It’s the baseline. We work across time zones and backgrounds, knowing the best ideas come from different perspectives. And we make space for everyone to lead, grow, and challenge what’s possible.
We’re proud to be an equal opportunity workplace. Employment decisions are based on job-related criteria, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by law.
Privacy Statement
Confluent is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organization. By proceeding with this application, you understand that Confluent will share your personal information with other IBM affiliates involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here.