Sr. Information Security Detection Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

PENNYMAC · 5 hours ago

Sr. Information Security Detection Engineer

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
money$90K/yr - $150K/yr

Pennymac is a specialty financial services firm focused on the production and servicing of U.S. mortgage loans. They are seeking a Sr. Information Security Detection Engineer to drive Threat Detection and Response efforts, specializing in developing detection rules and enhancing the detection engineering lifecycle.

BankingFinanceFinancial ServicesLendingMortgage
check
H1B Sponsor Likelynote

Responsibilities

Design, develop, test, and deploy high-quality detection rules using version control systems (e.g., Git) and CI/CD pipelines
Drive the overall detection engineering lifecycle including processes, improvements, and innovations
Use inputs from Threat Intelligence (TI) and threat modeling exercises to identify critical detection gaps
Maintain a comprehensive risk detection coverage mapping to communicate current coverage and show improvements
Serve as the primary author and reviewer of new detectors, ensuring proper documentation and testing
Continually observe the performance of existing detectors and tune them to reduce false positives and ensure they remain valuable
Leverage AI/ML capabilities to enhance the detection engineering lifecycle and identify anomalies
Partner with the Security Engineering team to configure, maintain, and optimize security monitoring tools to ensure maximum data ingestion quality and search performance
Act as a tier-2 technical escalation point for the L1 SOC, providing expertise in triage, root cause analysis, and remediation planning for complex security alerts
Perform in-depth host and network analysis across various environments with a primary focus on Windows, Cloud (AWS, Azure, GCP), and SaaS technologies
Execute the full IR lifecycle and lead incident handling during major security events
Serve as a technical escalation point for complex or novel security incidents
Develop and review Standard Operating Procedures (SOPs), playbooks, and other documentation for the IR team
Provide thought leadership on strategic objectives such as processes, technologies, and exercises
Mentor and train junior and mid-level incident responders on advanced techniques, tools, and best practices

Qualification

Threat Detection EngineeringMITRE ATT&CK FrameworkIncident ResponseCloud TechnologiesPythonSIEM TechnologyNetwork TechnologiesCommunicationSelf-starter

Required

Deep understanding of hacking techniques and tools including evasion techniques, reconnaissance, scanning, exploitation, evasion, lateral movement, persistence, and exploits
Strong understanding of MITRE ATT&CK Framework
Strong understanding of all phases of security incident handling and forensics including probing and attack methods, network/service discovery, system assessment, threat containment/eradication, and conducting retrospects to drive operational improvement
Strong understanding of network technologies including TCP/IP, IDS/IPS, firewalls, LAN, WLAN, and WAN
Expert understanding of AWS IaaS/PaaS, Linux, Windows Server, Windows Desktop, VMWare, Containers, and MacOS
Experience operating and maintaining SIEM technology and providing feedback to engineering teams to continually improve technology capabilities
Strong written and verbal communication
Ability to self-start and spearhead initiatives with minimal direction and oversight

Preferred

Past experience in a Cyber Security Operations Center as a Security Analyst is desired
Desired 2+ years of experience in Python and/or other scripting languages to automate common tasks and/or response actions
Desired experience in Snowflake or similar Data Lake Technology

Benefits

Comprehensive Medical, Dental, and Vision
Paid Time Off Programs including vacation, holidays, illness, and parental leave
Wellness Programs, Employee Recognition Programs, and onsite gyms and cafe style dining (select locations)
Retirement benefits, life insurance, 401k match, and tuition reimbursement
Philanthropy Programs including matching gifts, volunteer grants, charitable grants and corporate sponsorships

Company

PENNYMAC

twittertwittertwitter
Glassdoor3.1
company-logo
Pennymac is a home loan lending company that offers financial services.
dateFounded in 2008
location
Westlake Village, California, USA
people-size1001-5000 employees
web-link
https://www.pennymac.com

H1B Sponsorship

PENNYMAC has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (48)
2024 (42)
2023 (33)
2022 (44)
2021 (65)
2020 (34)

Funding

Current Stage
Public Company
Total Funding
$2.33B
2025-12-11Post Ipo Debt· $75M
2025-08-07Post Ipo Debt· $650M
2024-05-20Post Ipo Debt· $850M

Leadership Team

leader-logo
Amar Nadig
Senior Vice President of Enterprise Data
linkedin
leader-logo
Kevin Ryan
Senior Managing Director and Chief Strategy Officer
linkedin

Recent News

MarketScreener
Pennymac Financial Services Insider Sold Shares Worth $464,689, According to a Recent SEC Filing
2025-12-20
HousingWire.com
Inside Pennymac’s Texas expansion and its push for top mortgage talent
2025-12-16
HousingWire.com
Mortgage industry backs LLPA changes but is divided over priorities
2025-11-06
Company data provided by crunchbase