Staff Security Engineer - Detection & Response

About the role

Crusoe is on a mission to accelerate the abundance of energy and intelligence . As the only vertically integrated AI infrastructure company built from the ground up, we own and operate each layer of the stack - from electrons to tokens - to power the world's most ambitious AI workloads. When you join Crusoe, you join a team that is building the future, faster. We're in the midst of the greatest industrial revolution of our time. The demand for AI compute is boundless, and power is a bottleneck. We're solving that - with an energy-first approach that makes AI infrastructure better for the world and faster for the people innovating with AI. We're looking for problem-solving, opportunity-finding teammates with a sense of urgency, who believe in the scale of our ambition and thrive on a path not fully paved - people who want to grow their careers alongside a team of experts across energy, manufacturing, data center construction, and cloud services. If you want to do the most meaningful work of your career, help our customers and partners advance their AI strategies, and be part of a high-performing team that believes in each other, come build with us at Crusoe. About This Role: As a Staff Security Engineer - Detection & Response at Crusoe, you will serve as a primary architect of our defense, safeguarding our customers and our mission to align the future of computing with the future of the climate. In this high-impact, full-time role, you will influence our overarching detection strategy by designing, tuning, and validating complex correlation models to stay ahead of an ever-evolving threat landscape. You will bridge the gap between high-level strategy and hands-on execution, building the very technologies that identify and neutralize risks before they manifest. The ideal candidate is a seasoned security expert who balances deep technical mastery in Detection as Code with the leadership presence to mentor peers and partner with cross-functional teams. You will drive massive projects-from building open-source security observability at scale to integrating AI into our response workflows-ensuring that Crusoe's security posture is as innovative as our energy solutions. If you are an automation-first engineer who thrives on solving complex forensic puzzles and building resilient systems, you will play a foundational role in our continued growth. What You'll Be Working On: Detection Strategy & Design: Architect and implement advanced detection mechanisms to proactively hunt for threats across on-premise and cloud environments (GCP). Incident Leadership & Forensics: Lead high-stakes response efforts and forensic investigations, managing everything from initial triage and mitigation to post-incident stakeholder communication. Detection as Code & Tuning: Manage and refine alerting rules to maximize signal-to-noise ratios, utilizing modern workflows to ensure detections are version-controlled, tested, and scalable. SOAR & Automation: Build and maintain a robust library of automated playbooks and scripts to reduce manual intervention and accelerate our mean time to respond (MTTR). Security Operations Strategy: Partner with Engineering, Product, and Legal teams to align security operations with organizational goals, ensuring our defense scales with our infrastructure. Operational Excellence: Develop key performance metrics and measurement capabilities to track detection coverage, system performance, and overall residual risk. Documentation & Compliance: Author comprehensive runbooks and standard operating procedures that support our SOC 2 and HIPAA compliance frameworks. Cross-Functional Mentorship: Act as a technical beacon for the team, providing guidance, training, and strategic thinking to elevate the collective security expertise of the organization. What You'll Bring to the Team: Extensive Cyber Experience: At least 6+ years of professional experience in cybersecurity, specifically focused on detection, incident response, and security automation. Detection as Code Mastery: Proven experience implementing and managing Detection as Code workflows to maintain a modern, scalable security posture. Cloud & Infrastructure Proficiency: Deep technical knowledge of at least one major cloud provider (GCP preferred) and experience securing on-premise computing environments. Advanced Scripting Skills: Expert-level proficiency in Python for security scripting, automation, and building custom tooling. Forensic Expertise: Strong background in incident handling and forensic investigations across Unix/Linux, Windows, and Mac endpoints. Infrastructure Tooling: Hands-on experience with modern infrastructure-as-code and container tools, including Terraform, Docker, Kubernetes, and Ansible. Security Observability: Demonstrated ability to build, scale, and manage open-source security observability solutions and network security at scale. Clearance: Ability to successfully complete and pass a comprehensive background chec

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Crusoe? Share your experience