Job Description
The Security Operations (SecOps) team safeguards Robinhood by identifying, investigating, and responding to security threats. The team monitors production systems, endpoints, and cloud environments, using threat intelligence and structured testing to uncover risks before they affect customers. SecOps partners closely with engineering and infrastructure teams to strengthen detection coverage, improve visibility, and protect customer trust. Responsibilities
Design and improve detection logic, analyze security telemetry across cloud and endpoint systems, and contribute to measurable reductions in false positives and detection gaps. Work directly with SOC analysts and security engineers to refine investigation workflows and document incident findings. Investigate security alerts across SIEM, EDR, and cloud security platforms; perform log analysis and coordinate containment or remediation steps with engineering partners. Develop, test, and tune detection rules using query languages...
Design and improve detection logic, analyze security telemetry across cloud and endpoint systems, and contribute to measurable reductions in false positives and detection gaps. Work directly with SOC analysts and security engineers to refine investigation workflows and document incident findings. Investigate security alerts across SIEM, EDR, and cloud security platforms; perform log analysis and coordinate containment or remediation steps with engineering partners. Develop, test, and tune detection rules using query languages...