
Security Engineer, Detection and Response
WRITER's security team is looking for a staff detection and response engineer who builds sophisticated detection systems to identify attacks targeting the AI platform, training data, and model deployments, and creates automated response capabilities that scale with rapid growth.
Responsibilities
- ▹Design and implement detection strategies for AI-specific threats (prompt injection, model extraction, data poisoning, adversarial examples, unauthorized access to training data or model weights) across distributed infrastructure
- ▹Build automated response playbooks and orchestration workflows that contain threats without human intervention, cutting mean time to response from hours to minutes
- ▹Lead security incident response coordination across teams (Cloud, AppSec, Enterprise, AI Security) when AI infrastructure or models are compromised, conducting forensic investigations and incident communication
- ▹Proactively hunt for sophisticated threats across GPU clusters and training infrastructure, analyzing model outputs for signs of compromise and identifying visibility gaps
- ▹Build detection-as-code frameworks with version control and automated deployment, onboard telemetry from AI infrastructure, create security dashboards
- ▹Collaborate cross-functionally as the operational security partner, translating threat research into production detections
- ▹Maintain a 24/7 on-call rotation for critical AI security incidents, continuously improving detection coverage
Requirements
- ▹3-5+ years in security operations, detection engineering, or incident response with a proven track record stopping sophisticated attacks, specifically securing AI/ML infrastructure or distributed systems at scale
- ▹Strong programming skills in Python, KQL, SPL, or similar languages to build custom detection logic and automated response workflows
- ▹Experience with SIEM platforms, detection technologies, and forensic investigation techniques, including detecting novel attack techniques without established patterns
- ▹Self-directed execution mindset with a track record of securing high-value intellectual property and automating incident response in complex environments
Soft skills
What we offer
- ▹Generous PTO, plus company holidays
- ▹Medical, dental, and vision coverage for you and your family
- ▹Paid parental leave for all parents (16 weeks)
- ▹Fertility and family planning support
- ▹Early-detection cancer testing through Galleri
- ▹Flexible spending account and dependent FSA options
- ▹Health savings account with company contribution
- ▹Annual wellness and learning & development stipends
- ▹Company-wide and team off-sites
- ▹Competitive compensation, stock options, and 401k
About the company
WRITER builds the platform that lets the world's leading enterprises orchestrate AI-powered work, with a mission to expand human capacity through superintelligence. Its trustworthy, enterprise-grade LLMs and AI agents power companies like Mars, Marriott, Uber, and Vanguard. Founded in 2020 and valued at $1.9B, backed by investors including Premji Invest, Radical Ventures, and ICONIQ Growth, WRITER has office hubs in San Francisco, New York City, Seattle, Austin, Chicago, and London. This role can be based out of the San Francisco or Seattle office, reporting to the head of security operations.
Similar jobs

Security Engineer, Agent Security

Security Engineer

Member of Technical Staff (Offensive Security Engineer)

Security Engineer, Application Security

Senior Security Operations Engineer
