Apply on Employer Site

Scribd, Inc. · 1 day ago

Senior Security Engineer (Detection & Response)

San Francisco

Full-time

Hybrid

Mid, Senior Level

$144K/yr - $226K/yr

4+ years exp

Scribd Inc. is a company dedicated to sparking human curiosity through its diverse range of products. They are seeking a Senior Security Engineer focused on Detection & Response to enhance their security capabilities, working closely with various teams to design and operationalize detection systems and improve response times.

AudiobooksBooksEBooksFile SharingNewsPodcastPublishing

H1B Sponsor Likely

Responsibilities

Design and operationalize detection capabilities

Own and evolve detection coverage across applications, APIs, cloud infrastructure, identity, and bot/abuse surfaces

Translate threat models and real incidents into high-confidence detection patterns

Partner with engineers to instrument high-quality, security-relevant telemetry at the application and platform layers

Operationalize and mature the SIEM

Lead enrichment, normalization, and correlation of logs into actionable security signals

Define detection standards and patterns to reduce noise and improve signal quality

Ensure telemetry supports both internal investigations and MDR-led monitoring

Improve response speed and quality

Reduce MTTD and MTTR through improved triage, automation, and contextual alerting

Build and maintain runbooks, response workflows, and post-incident learning loops

Partner with IT Security and the MDR provider to continuously improve detection and response outcomes

Advance runtime and behavior-based protections

Help design and deploy runtime detection and protection techniques (RASP-like approaches), especially for modern interfaces such as GraphQL

Support bot detection, abuse prevention, and DDoS mitigation in collaboration with application and platform teams

Leverage deception techniques (e.g., honeypots, canaries) to detect and learn from adversary behavior

Define and track meaningful metrics

Implement and track detection and response KPIs (e.g., coverage, signal quality, MTTD/MTTR)

Use metrics to guide prioritization and measure improvement over time

Align measurements with frameworks such as Time-Based Security and NIST CSF

Validate and improve continuously

Participate in purple-team exercises, tabletop simulations, and incident retrospectives

Ensure detection, response, and protection capabilities work cohesively within targeted timeframes

Qualification

Security engineeringDetection engineeringIncident responseSIEM technologiesCloud securityLoggingTelemetryThreat detection frameworksBackend programmingCollaboration skillsCommunication skills

Required

4+ years of experience in security engineering, detection engineering, incident response, or an equivalent blend of software and security engineering

Hands-on experience designing or operating detection and response systems (not just responding to alerts)

Strong understanding of logging, telemetry, and signal design in modern cloud and application environments

Experience with SIEM technologies such as Splunk, Elasticsearch, Datadog, Chronicle, or similar platforms

Experience partnering with or operating alongside an MDR or SOC provider

Familiarity with threat detection and response frameworks (e.g., MITRE ATT&CK, Time-Based Security, NIST CSF)

Ability to write quality code or tooling in at least one backend language (preferably Python, Ruby, or Go)

Strong collaboration and communication skills, with the ability to influence engineers without formal authority

Preferred

Experience with bot detection, abuse prevention, or DDoS mitigation

Experience instrumenting or protecting GraphQL APIs

Cloud security experience (AWS preferred)

Infrastructure-as-Code experience (Terraform, CloudFormation)

Experience building automation for alerting, triage, or response workflows

Exposure to purple-team or adversary simulation exercises

Benefits

Healthcare Insurance Coverage (Medical/Dental/Vision): 100% paid for employees

12 weeks paid parental leave

Short-term/long-term disability plans

401k/RSP matching

Onboarding stipend for home office peripherals + accessories

Learning & Development allowance

Learning & Development programs

Quarterly stipend for Wellness, WiFi, etc.

Mental Health support & resources

Free subscription to the Scribd Inc. suite of products

Referral Bonuses

Book Benefit

Sabbaticals

Company-wide events

Team engagement budgets

Vacation & Personal Days

Paid Holidays (+ winter break)

Flexible Sick Time

Volunteer Day

Company-wide Employee Resource Groups and programs that foster an inclusive and diverse workplace.

Access to AI Tools: We provide free access to best-in-class AI tools, empowering you to boost productivity, streamline workflows, and accelerate bold innovation.

Company

Scribd, Inc.

Glassdoor2.6

We're on a mission to spark human curiosity.

Founded in 2007

San Francisco, California, USA

201-500 employees

http://www.scribd.com

H1B Sponsorship

Scribd, Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (5)

2024 (2)

2023 (8)

2022 (3)

2021 (12)

2020 (15)

Funding

Current Stage

Late Stage

Total Funding

$106.75M

Key Investors

Spectrum EquityKhosla VenturesMLC Australia,SVB Capital

2019-11-25Series E· $58M

2015-01-02Series D· $23M

2011-01-18Series C· $12M

Leadership Team

Tony Grimminck

Chief Executive Officer

Adrian Lienhard

VP, Infrastructure Engineering

Recent News

TechCrunch

Scribd Raises $9 Million So You Can Continue To View PDFs Online | TechCrunch

2026-01-05

TechCrunch

Scribd Banks $3.5 Million from Redpoint

2025-12-11

PR Newswire

The 2026 State of Reading Report: Human Recommendations Surpass Algorithms in the AI Era

2025-12-10

Company data provided by crunchbase