Detection Engineering - Security Engineer

CoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI. Our technology provides enterprises and leading AI labs with the most performant, efficient and resilient solutions for accelerated computing. Since 2017, CoreWeave has operated a growing footprint of data centers covering every region of the US and across Europe. CoreWeave was ranked as one of the TIME100 most influential companies of 2024.

As the leader in the industry, we thrive in an environment where adaptability and resilience are key. Our culture offers career-defining opportunities for those who excel amid change and challenge. If you’re someone who thrives in a dynamic environment, enjoys solving complex problems, and is eager to make a significant impact, CoreWeave is the place for you. Join us, and be part of a team solving some of the most exciting challenges in the industry.  

CoreWeave powers the creation and delivery of the intelligence that drives innovation. 

What You’ll Do

On this team, you will:

• Design cutting-edge detection strategies at scales most security engineers only dream about
• Collaborate with talented peers in an innovative environment focused on excellence
• Enjoy the autonomy and encouragement to innovate and influence CoreWeave’s security landscape directly

In this role, you will be responsible for:

• Developing and implementing advanced threat detection capabilities to proactively identify and mitigate cyber threats
• Crafting precise and efficient custom detection logic tailored to evolving threat landscapes
• Leading and/or participating in real-time security incident response, threat containment, and remediation.
• Conducting proactive threat-hunting exercises to uncover hidden vulnerabilities and anticipate threats
• Collaborating closely with cross-functional teams to enhance security visibility and detection effectiveness
• Continuously researching and staying informed about emerging threats, attack vectors, and detection methodologies
• Participating in strategic security initiatives, contributing your expertise to security architecture and controls
• Engaging in security assessments to uphold our high standards for security and compliance
• Occasionally, "drawing the owl" - figuring out innovative solutions while navigating ambiguous situations

Investing in our people is one of our top priorities, and we value candidates who can bring their diversified experiences to our teams. Here are some qualities we’ve found compatible with our team. We'd love to talk about whether this aligns with your experience and interests and what you’re excited to work on next.

Who You Are

Minimum Qualifications

• Proven ability to deliver impactful projects spanning multiple technical domains and teams
• Extensive experience crafting custom alert logic within industry-standard tooling, like KQL, SQL, etc
• Familiarity with Kubernetes fundamentals and enthusiasm to deepen your expertise.
• Experience collaborating closely with Purple and Red Teams, leveraging findings to enhance detection capabilities.
• Solid understanding of modern TTP frameworks such as MITRE ATT&CK and Cyber Kill Chain.
• Proficiency in at least one query language (e.g., SQL, Splunk Query Language, HiveQL).
• Competency in writing detections in multiple languages (Python, Bash, Go, JavaScript, etc.)
• Strong foundational knowledge of Linux or macOS internals and their relevant event sources (eBPF, Endpoint Security Framework)
• Practical experience applying and contributing to the Incident Response Lifecycle methodology

Preferred Qualifications

• Deep understanding of Kubernetes-specific detection and security challenges
• Contributions to the open-source security community or experience developing detection tooling
• Experience leveraging advanced analytics or machine learning techniques in detection engineering

Please note that this role is not a typical 9-5 job. There may be instances where real-time incident response requires active participation outside business hours. On-call hours (including weekends and holidays) and all-hands-on-deck participation during active incidents are expected. If crafting sophisticated detection strategies and staying ahead of threats in a dynamic, innovative environment excites you, we’d love to connect!

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $160,000/year to $275,000/year. Pay is based on a number of factors including location, level, job-related knowledge, skills, and experience.

What We Offer

The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including:

• Medical, dental, and vision insurance - 100% paid for by CoreWeave
• Company-paid Life Insurance 
• Voluntary supplemental life insurance 
• Short and long-term disability insurance 
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement 
• Mental Wellness Benefits through Spring Health 
• Family-Forming support provided by Carrot
• Paid Parental Leave 
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption

Our Workplace

At CoreWeave, we are committed to operating as a hybrid workplace, offering employees flexibility in how they structure their time between in-office and remote work. We recognize the significance of fostering connections, collaboration, and creativity within our office culture and its positive impact on our business. Our philosophy operating as a hybrid workplace underscores our dedication to enabling employees to tailor work-life balance to their individual preferences.

For those who do not live within 30 miles of one of our offices, we are open to considering remote work for candidates whose skills and experience strongly align with the role. While we prioritize a hybrid work environment for most roles, we understand the importance of flexibility and are open to remote work for specific positions and specialized skill sets. Onboarding is essential to your success. New employees not based out of an office will be invited to attend onboarding training at one of our hubs within their first month of employment. We continue to foster a collaborative environment by bringing teams together quarterly.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.