Threat Detection & Response Engineer III

· Remote

Location

Remote

Type

Full Time

Job Description

True AnomalyJobs
Threat Detection & Response Engineer III

Threat Detection & Response Engineer III

Posted Yesterday
Be an Early Applicant
2 Locations
In-Office
115K-165K Annually
Mid level
Aerospace • Artificial Intelligence • Hardware • Machine Learning • Software • Defense • Manufacturing
Delivering decisive capabilities for space superiority.
The Role
The Threat Detection & Response Engineer III develops incident response plans designs security detections actively hunts for threats and collaborates with cross-functional teams to enhance the organization's security posture.
Summary Generated by Built In

Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it.

OUR MISSION

True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft advanced payloads mission software and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.

OUR VALUES

  • Be the offset. We create asymmetric advantages with creativity and ingenuity.
  • What would it take? We challenge assumptions to deliver ambitious results.
  • It’s the people. Our team is our competitive advantage and we are better together.

YOUR MISSION

As a Threat Detection & Response Engineer III you will be an integral part of our threat detection and response function helping build and mature the detection capabilities response processes and security tooling that underpin our security operations program.

You'll design and implement detection capabilities sharpen our incident response procedures and contribute to the foundation of a world-class security program. Expect a fast-paced environment where your work carries real weight and directly influences our security posture.

This role is a great fit for someone who takes initiative enjoys digging into hard problems and wants to make a tangible impact on a growing security program.

This position requires the ability to obtain and maintain a security clearance.


Responsibilities

  • Develop incident response plans playbooks and SOPs; build scalable processes to support future team growth
  • Design and implement custom security detections across corporate and cloud environments leveraging frameworks like MITRE ATT&CK
  • Continuously tune detection rules and develop threat models to improve fidelity and address coverage gaps
  • Monitor triage and respond to security alerts across multiple platforms and data sources
  • Perform incident investigations through technical analysis containment eradication and recovery; document findings and lessons learned
  • Proactively hunt for threats and leverage threat intelligence to anticipate emerging adversary TTPs
  • Administer and optimize EDR and SIEM platforms; integrate log sources to enhance visibility and correlation
  • Build automation and orchestration workflows to improve response efficiency
  • Partner with cross-functional teams (IT Engineering Legal Compliance) and communicate technical findings to diverse stakeholders

Qualifications

  • 3+ years of experience in cybersecurity with at least 2 years focused on security operations detection engineering incident response or threat hunting
  • Experience in building or tuning security detections
  • Familiarity with risk-based alerting and alert tuning including strategies to reduce noise improve detection fidelity and prioritize high-signal alerts
  • Familiarity with EDR platforms including basic alert triage and response actions
  • Working knowledge of Windows MacOS or Linux endpoint security and common attack techniques
  • Familiarity with SIEM platforms and log analysis (e.g. Splunk Elastic or similar)
  • Basic understanding of common attack vectors TTPs and security frameworks such as MITRE ATT&CK and the Cyber Kill Chain
  • Experience with scripting (Python PowerShell or Bash) for automation or analysis tasks
  • Clear verbal and written communication skills

Preferred Qualifications

An ideal candidate will also have:

  • Active TS/SCI security clearance or ability to obtain and maintain a security clearance
  • Knowledge of digital forensics and malware analysis techniques
  • Experience building or significantly maturing a detection and response program
  • Experience working in Azure Government Cloud (Azure GovCloud) environments
  • Experience with cloud security monitoring in AWS GCP or Azure commercial environments
  • Familiarity with CMMC FedRAMP NIST 800-53 or other federal compliance frameworks
  • Experience with Detections-as-Code paradigms GitOps CI/CD etc
  • Experience participating in or supporting red team/purple team exercises

Work Environment

  • This role will be onsite in our Denver (Centennial) CO office or our Long Beach CA office
  • This role operates in a fast-paced high-stakes environment where rapid decision-making and adaptability are essential
  • On-call rotation participation including after-hours participation is required for incident response coverage
  • Must be comfortable working under pressure during active security incidents
  • High degree of autonomy and ownership
  • Direct access to leadership and opportunity to influence security strategy

Compensation

  • Base Salary: $115000 to $165000
  • Equity + Benefits including Health Dental Vision HRA/HSA options PTO and paid holidays 401K Parental Leave 
  • Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills education location and experience. 

What We Offer

  • Competitive salary
  • Opportunity to work on challenging mission-critical security initiatives
  • Professional development and certification support
  • Collaborative culture with experienced security professionals

 

This position will be open until it is successfully filled. To submit your application please follow the directions below.

To conform to U.S. Government space technology export regulations including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen lawful permanent resident of the U.S. protected individual as defined by 8 U.S.C. 1324b(a)(3) or eligible to obtain the required authorizations from the U.S. Department of State.

True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation please do not hesitate to let us.


To conform to U.S. Government space technology export regulations including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen lawful permanent resident of the U.S. protected individual as defined by 8 U.S.C. 1324b(a)(3) or eligible to obtain the required authorizations from the U.S. Department of State.

True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation please do not hesitate to let us.


Skills Required

  • 3+ years of experience in cybersecurity
  • At least 2 years focused on security operations or incident response
  • Experience in building or tuning security detections
  • Familiarity with EDR platforms and basic alert triage
  • Working knowledge of Windows MacOS or Linux endpoint security
  • Familiarity with SIEM platforms and log analysis
  • Basic understanding of common attack vectors and security frameworks
  • Experience with scripting for automation

True Anomaly Compensation & Benefits Highlights

  • Affordable BenefitsEmployer-paid healthcare is described as fully covered with no employee premiums reducing paycheck deductions. Dental and vision coverage alongside HSA/HRA/FSA options further help manage out-of-pocket medical costs.
  • Leave & Time Off BreadthTime off is characterized as generous including a substantial PTO allotment plus U.S. holidays. Flexible time-off policies and hybrid scheduling further support recharge and flexibility.
  • Parental & Family SupportParental leave is described as generous and a dedicated mother’s room is provided. These provisions indicate tangible support for growing families.

True Anomaly Insights

Am I A Good Fit?
beta
Expert contributor network
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Centennial CO
300 Employees
Year Founded: 2022

What We Do

Space was once the quietest place in the universe. Now it's crowded contested and confrontational.  We are True Anomaly: the only defense company focused exclusively on space defense. Founded in 2022 by ex-U.S. Space Force members True Anomaly designs and builds advanced systems for space superiority: agile and powerful spacecraft platforms mission software engineered for unmatched command and control and payloads tailored for precision sensing and effects.    True Anomaly is headquartered in Centennial CO with regional offices in Colorado Springs CO Long Beach CA and Washington D.C.  We are hiring and seeking exceptional talent to join True Anomaly from any technical industry or background to bring unique talents perspective and solutions. If you embrace complexity lead instead of follow showcase integrity over ego take ownership for outcomes and measure success by impact we want to hear from you.

Why Work With Us

True Anomaly exists to enable a secure stable and sustainable space environment for the US its allies and partners. We design and build spacecraft and software solutions for space superiority. If you are ready to contribute to the future of space defense we’d love to hear from you.

Gallery

True Anomaly Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

We are a hybrid office culture. Our employees work from offices in Denver Colorado Springs Los Angeles and Washington D.C. We recognize the importance of in-office collaboration but also the value of a flexible work and location requirements

Typical time on-site: Not Specified
Company Office Image
HQEngineering and Manufacturing
Company Office Image
Mission Operations
Company Office Image
Engineering and Manufacturing
Company Office Image
Government Affairs and Sales
Learn more

Similar Jobs

True Anomaly

Software Engineer

Aerospace • Artificial Intelligence • Hardware • Machine Learning • Software • Defense • Manufacturing
In-Office
Denver CO USA
300 Employees
70K-130K Annually

True Anomaly

Program Scheduler

Aerospace • Artificial Intelligence • Hardware • Machine Learning • Software • Defense • Manufacturing
In-Office
2 Locations
300 Employees
120K-165K Annually

True Anomaly

Systems Administrator

Aerospace • Artificial Intelligence • Hardware • Machine Learning • Software • Defense • Manufacturing
In-Office
2 Locations
300 Employees
90K-135K Annually

True Anomaly

Technical Program Manager

Aerospace • Artificial Intelligence • Hardware • Machine Learning • Software • Defense • Manufacturing
In-Office
2 Locations
300 Employees
140K-200K Annually
Apply Now

Date Posted

05/15/2026

Views

0

Back to Job Listings Add To Job List Company Profile View Company Reviews
Neutral
Subjectivity Score: 0
142,000+ Jobs Tracked
12,400+ Companies
1,930 Categories