Security Engineer - Detection & Agentic AI
ExternalPrepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
Responsibilities
- Build and ship agentic detection and response - own the full lifecycle from threat use case through detections-as-code, automated triage, and production agentic response workflows. Ship working code, not designs.
- Architect and evolve the security data platform - own collector/forwarder architecture, log pipeline design, SIEM strategy, and detection-content portability that enable an adaptive, resilient SOC. Contribute to the technical roadmap for security data infrastructure.
- Force-multiply the managed services partner - build supervised automations that expand analyst capacity under oversight - replacing L1 toil with agents and lowering cost-to-serve while maintaining Solidigm governance and visibility.
- B.S. Degree in Information Security, Cybersecurity, Computer Science, Software Engineering, or related fields.
- Advanced English level (mandatory).
- Software development proficiency - Python preferred; API integration; infrastructure-as-code; CI/CD. This is a development role. Expected experience: 4-6+ years of relevant hands-on work.
- Security operations fluency - detection engineering, SIEM/SOAR platforms, and incident response workflows. Comfortable owning the detection lifecycle end-to-end.
- MITRE ATT&CK depth - TTP mapping, kill chain coverage analysis, and detection-to-technique alignment. Ability to build and maintain ATT&CK coverage heatmaps, prioritize detection development against real threat intelligence, and report on TTP coverage gaps and MTTD.
- AI/agent development experience - hands-on building with agent frameworks, RAG pipelines, or agentic orchestration in production.
- Field mindset - comfortable embedding with operational teams, shipping in partner-controlled environments, and coaching across technical levels.
Requirements
- Microsoft security stack - Defender XDR, Microsoft Sentinel (+ Dat
Additional Information
The Agentic SOC Developer is Solidigm's embedded security builder - a Senior Engineer (IC7) who owns detection coverage strategy, builds and ships production agentic detection and response, and directly expands the capability of the SOC and managed-services partner. This role defines and enforces detection standards grounded in MITRE ATT&CK, operationalizes AI agents and automation pipelines, and governs the non-human identity and delegation lifecycle for security AI agents. This is an engineering role, not an analyst role: the person writes and deploys working code in the live environment.
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at Solidigm? Share your experience