
Datadog · Lisbon
As a Senior Security Engineer focused on Datadog’s Cloud SIEM product, you will help shape the future of security operations by transforming real-world security...
As a Senior Security Engineer focused on Datadog’s Cloud SIEM product, you will help shape the future of security operations by
transforming real-world security expertise into scalable detection, investigation, and response capabilities. You will develop
high-impact threat detection content, improve AI-assisted security workflows, and help defenders identify and respond to threats
across cloud-native and enterprise environments. Working closely with Product, Engineering, and Security Research teams, you will
influence the evolution of Datadog Security products while advancing detection coverage across emerging technologies and attack
surfaces. This role offers the opportunity to contribute to open source initiatives, publish security research, and help define
the next generation of agentic security operations capabilities.
At Datadog, we place value in our office culture - the relationships and collaboration it builds and the creativity it brings to
the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them.
capabilities that protect customers at cloud scale.
capabilities.
measurement, and continuous improvement.
other modern attack surfaces.
outcomes across the platform.
disciplines.
technologies including Kubernetes, Docker, and Terraform.
analysis.
security tooling.
organizations.
Datadog values people from all walks of life. We know not everyone will meet all the above qualifications on day one. That’s okay.
If you’re passionate about technology and want to grow your experience, we encourage you to apply.
Benefits and Growth listed above may vary based on the country of your employment and the nature of your employment with Datadog.
#LI-Hybrid
Datadog is the leading observability and security platform for the AI era, providing businesses with unified visibility across the
technology stack to manage complexity at scale. It brings applications, infrastructure, data, models, and security into one place,
using AI to detect and resolve issues before they impact customers. Trusted globally by Fortune 500 companies and high-growth AI
leaders, Datadog enables businesses to move faster with clarity and confidence. Learn more about #DatadogLife on Instagram,
LinkedIn, and Datadog Learning Center.
Datadog is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national
origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and other
characteristics protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal
requirements. Here are our Candidate Legal Notices for your reference.
Datadog endeavors to make our Careers Page accessible to all users. If you would like to contact us regarding the accessibility of
our website or need assistance completing the application process, please complete this form. This form is for accommodation
requests only and cannot be used to inquire about the status of applications.
Any information you submit to Datadog as part of your application will be processed in accordance with Datadog’s Applicant and
Candidate Privacy Notice. For information on our AI policy, please visit Interviewing at Datadog AI Guidelines.
As a Senior Security Engineer focused on Datadog’s Cloud SIEM product, you will help shape the future of security operations by transforming real-world security expertise into scalable detection, investigation, and response capabilities. You will develop high-impact threat detection content, improve AI-assisted security workflows, and help defenders identify and respond to threats across cloud-native and enterprise environments. Working closely with Product, Engineering, and Security Research teams, you will influence the evolution of Datadog Security products while advancing detection coverage across emerging technologies and attack surfaces. This role offers the opportunity to contribute to open source initiatives, publish security research, and help define the next generation of agentic security operations capabilities. At Datadog, we place value in our office culture - the relationships and collaboration it builds and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them. What You'll Do: * Research attacker techniques, defensive strategies, and emerging threats, translating findings into scalable security capabilities that protect customers at cloud scale. * Design and improve AI-powered investigation, threat hunting, and response workflows that support Datadog’s agentic SOC capabilities. * Own the lifecycle of threat detections and automated security workflows, from research and design through deployment, measurement, and continuous improvement. * Develop high-fidelity detection content across cloud platforms, SaaS applications, identity systems, endpoints, networks, and other modern attack surfaces. * Partner with Product, Engineering, Security Research, and customers to influence roadmap decisions and improve security outcomes across the platform. * Mentor security engineers and drive improvements through automation, tooling, rapid prototyping, and data-driven optimization. Who You Are: * Experienced in detection engineering, incident response, threat hunting, security operations, or related defensive security disciplines. * Knowledgeable in securing and operating public cloud environments such as AWS, Azure, or GCP, along with cloud-native technologies including Kubernetes, Docker, and Terraform. * Skilled in modern detection engineering practices, including detection-as-code methodologies and large-scale security telemetry analysis. * Proficient in Python, Go, or similar programming languages used to automate workflows, analyze security data, and build security tooling. * Comfortable driving initiatives through ambiguity while collaborating effectively across engineering, product, and research organizations. * Passionate about applying AI and automation to improve how defenders investigate, detect, and respond to threats. Datadog values people from all walks of life. We know not everyone will meet all the above qualifications on day one. That’s okay. If you’re passionate about technology and want to grow your experience, we encourage you to apply. Benefits and Growth: * New hire stock equity (RSUs) and employee stock purchase plan (ESPP). * Continuous professional development, product training, and career growth opportunities. * Mentor and buddy programs that support learning, development, and internal networking. * An inclusive culture with opportunities to participate in Community Guilds and employee resource groups. * Access to Inclusion Talks and other learning experiences that foster belonging and growth. * Comprehensive mental health benefits for employees and eligible dependents. * Competitive benefits programs that support employees globally. Benefits and Growth listed above may vary based on the country of your employment and the nature of your employment with Datadog. #LI-Hybrid ---------------------------------------------------------------------------------------------------------------------------------- About Datadog: Datadog is the leading observability and security platform for the AI era, providing businesses with unified visibility across the technology stack to manage complexity at scale. It brings applications, infrastructure, data, models, and security into one place, using AI to detect and resolve issues before they impact customers. Trusted globally by Fortune 500 companies and high-growth AI leaders, Datadog enables businesses to move faster with clarity and confidence. Learn more about #DatadogLife on Instagram, LinkedIn, and Datadog Learning Center. ---------------------------------------------------------------------------------------------------------------------------------- Equal Opportunity at Datadog: Datadog is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and other characteristics protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. Here are our Candidate Legal Notices for your reference. Datadog endeavors to make our Careers Page accessible to all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please complete this form. This form is for accommodation requests only and cannot be used to inquire about the status of applications. Privacy and AI Guidelines: Any information you submit to Datadog as part of your application will be processed in accordance with Datadog’s Applicant and Candidate Privacy Notice. For information on our AI policy, please visit Interviewing at Datadog AI Guidelines.
GitLab is the intelligent orchestration platform for DevSecOps. GitLab enables organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. More than 50 million registered users and more than 50% of the Fortune 100* trust GitLab to ship better, more secure software faster. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software. *Fortune 500® is a registered trademark of Fortune Media IP Limited, used under license. Claim based on GitLab data. Fortune 100 refers to the top 20% ranked companies in the 2025 Fortune 500 list, published in June 2025. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of GitLab. An overview of this role As a Senior Security Engineer on GitLab’s Security Incident Response Team (SIRT), you will play a critical role in defending GitLab.com and the broader GitLab environment against evolving security threats. You will lead high-impact incidents and investigations, drive continuous improvements in defense, detection and response capabilities, and help scale security operations through automation and intelligent workflows. Operating within a 24/7 global environment (follow the sun model), you will own incidents end-to-end - from detection and triage through containment, eradication, and recovery - while partnering cross-functionally to strengthen GitLab’s overall security posture. A key aspect of this role is leveraging automation and AI-driven approaches to improve detection fidelity, accelerate investigations, and reduce response times. You will help shape how modern tooling and data are applied to stay ahead of evolving adversary tactics. This role is ideal for someone who thrives in high-tempo environments, brings strong DFIR expertise, and is equally passionate about operational excellence and building scalable detection and response systems and workflows. WHAT YOU’LL DO * Lead and coordinate end-to-end incident response for high-severity security events within a 24/7 global on-call model, with this role operating during EMEA business hours * Prepare clear executive communications that keep stakeholders informed during incidents * Investigate complex security incidents across cloud environments, applying strong Digital Forensics and Incident Response (DFIR) methodologies * Partnering with Signals Engineering to design and implement detection capabilities, including SIEM use cases, alerting strategies, and telemetry pipelines * Build and enhance automation and AI-assisted workflows to improve triage, investigation speed, and response consistency * Partner with Threat Intelligence to contextualize threats and improve detection coverage * Conduct root cause analysis (RCA) and lead post-incident reviews to drive continuous improvement and risk reduction * Develop and maintain runbooks, playbooks, and operational documentation * Collaborate cross-functionally (Engineering, Infrastructure, Legal, Product, Communications, etc) during incidents and lead proactive initiatives (e.g. tabletops) * Mentor other engineers and help elevate the team’s overall incident response maturity WHAT YOU’LL BRING * Strong experience in security incident response and investigations in cloud-first environments * Experience using or administering Git/GitLab in a security or engineering context * Hands-on experience with SIEM, EDR, and/or detection engineering * Experience with cloud platforms (AWS & GCP) * Familiarity with threat intelligence and adversary tactics (e.g., MITRE ATT&CK) * Experience building or working with automation (e.g., Python, scripting, SOAR platforms) * Interest or experience in applying AI/ML or data-driven techniques to detection, triage, or response workflows * Strong analytical and problem-solving skills; ability to operate effectively during high-severity incidents * Excellent written communication skills with a passion for clear, actionable documentation * Growth mindset with a proactive approach to identifying and mitigating security risks ABOUT THE TEAM The Security Incident Response Team (SIRT) is a globally distributed team of engineers split across 3 core regions; AMER, APAC and EMEA, and is at the forefront of security events that impact both GitLab.com and GitLab cloud and corporate environments. We are both reactive and proactive, leading security investigations, incident response support and response resolution, through to cyber threat analysis and detection and response engineering. Even though we’re a global team, we work together in a cross-regional manner and have automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work as well. HOW GITLAB SUPPORTS FULL-TIME EMPLOYEES * Benefits to support your health, finances, and well-being * Flexible Paid Time Off * Team Member Resource Groups * Equity Compensation & Employee Stock Purchase Plan * Growth and Development Fund * Parental Leave Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application. ---------------------------------------------------------------------------------------------------------------------------------- Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process. Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us. GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.
Join our global force of 400+ innovators, blending the latest in tech with the greatest in soundtracking, from our Stockholm HQ to offices in London, New York, Los Angeles, Berlin, Paris, Oslo, and Seoul. We’re an industry leader with a startup mentality. We take what we do seriously, but we don’t take ourselves too seriously. Creating and collaborating to transform the sound of streaming, content, and culture. Come join us, and let the world feel your work. As a Security Engineer at Epidemic Sound, you will help keep the company safe across three connected surfaces: the products our customers use, the platform our engineers build on, and the systems our employees rely on every day. This is a broad, generalist role where your work directly shapes how an industry-leading company with a startup mentality manages risk and builds securely at scale. Building security automations and custom AI agents is a normal part of how the team operates, and you will be expected to do the same. You will sit within the Business Tech Division and report to the Head of Security, working closely with engineers, SRE, IT, Legal, and People teams across the organisation. YOUR KEY RESPONSIBILITIES INCLUDE * Own the vulnerability management programme across our products, cloud, and corporate estate: discovery, prioritisation, remediation tracking, and reporting. * Consolidate findings across our detection stack into a single risk picture. * Partner with software engineers to grow the Secure Software Development Lifecycle, including code reviews, threat models, and pre-ship security input. * Harden the GCP estate, Kubernetes platform, and CI/CD systems our engineers depend on. * Run vendor security reviews and respond to enterprise customer security questionnaires. * Operate and tune the Elastic SIEM and broader detection stack, building new detections as the threat picture evolves. * Respond to security incidents including on-call, and run training exercises to keep the team ready. * Build and run security agents and automations that other engineers and the wider business rely on, treating them as production-grade software. * Evaluate AI models and frameworks against security standards. REQUIREMENTS * Around five years in security engineering, with depth in at least one of application security, infrastructure security, enterprise security, or vulnerability management, and solid breadth across the others. * Hands-on experience running or contributing to a vulnerability management programme, including prioritisation, SLA setting, remediation tracking, and reporting. * Working knowledge of SCA/SAST tooling, Internal Developer Portals, and SIEM; we use Snyk, Port, and Elastic. * Working knowledge of the security features of the major public cloud providers, with GCP preferred. * Comfort with Kubernetes, Docker, or other container architectures. * Confident with at least one programming or scripting language such as Python, Go, or Bash. * Solid experience with Git, GitHub Actions, and Terraform. * Active, daily use of AI and agentic tools, with concrete examples of agents you have built and outputs you have shipped. * Experience with vendor security questionnaires. * Familiarity with common security frameworks such as PCI DSS and NIST. IT WOULD ALSO BE MUSIC TO OUR EARS IF YOU HAVE * Penetration testing background or OWASP Top 10 fluency. * Experience with CI/CD security hardening at scale. * A track record of building security tools other engineers want to use. * Experience reporting vulnerability management and security posture metrics to leadership. * Familiarity with social engineering attacks, especially phishing, and the controls that reduce them. Equal opportunity employer We believe that bringing people together from different backgrounds, experiences and perspectives makes for a healthy workplace, a more successful business and a better world. We value diversity and encourage everyone to come and soundtrack the world with us. Application Ready to make the world feel your work? Please apply, in English.