Sr Security Operations Engineer, Slack

Slack's Security team is seeking a Senior Security Operations Engineer to join their Security Engineering team. The role focuses on threat detection, logging, and remediation within Slack's infrastructure. The ideal candidate will work with a dozen-person team of multidisciplinary engineers who handle SecDevOps, Go programming, Python development, and Elasticsearch scaling.

The position involves working directly with the Security Operations team, focusing on threat detection and system security. The team supports Slack's mission by making people's working lives more secure, taking a systemic approach to security while maintaining a low-friction, high-impact security model.

The role requires someone passionate about finding Indicators of Compromise (IOCs) and suggesting new detection methods. Experience with APT tradecraft and threat intelligence is highly valued. The team operates in AWS environment and works with technologies like Elasticsearch/Kibana, Kafka, and Google Chronicle.

Key responsibilities include threat detection, infrastructure scaling, working with eBPF-based detection frameworks, and participating in on-call rotations. The ideal candidate should possess strong problem-solving abilities, collaborative spirit, and deep understanding of core security concepts.

This is an opportunity to join a team that values creativity, continuous learning, and meaningful impact in protecting critical infrastructure and customer data. The role offers significant autonomy in defining workstreams and approaching engineering problems as an art form, while working with a team that prioritizes maintainable solutions and quality work.