CoreWeave
Director, Security Engineering, Detection and Response
CoreWeave, New York, New York, us, 10261
Director, Security Engineering, Detection and Response
CoreWeave is The Essential Cloud for AI™. Built for pioneers by pioneers, CoreWeave delivers a platform of technology, tools, and teams that enables innovators to build and scale AI with confidence. Trusted by leading AI labs, startups, and global enterprises, CoreWeave combines superior infrastructure performance with deep technical expertise to accelerate breakthroughs and turn compute into capability. Founded in 2017, CoreWeave became a publicly traded company (Nasdaq: CRWV) in March 2025. Learn more at www.coreweave.com.
What You’ll Do We are seeking a Director of Detection and Response Engineering to lead our security detection, incident response, and offensive security teams. This senior leader will design and execute strategies to identify, contain, and mitigate threats while proactively testing and hardening our defenses.
Responsibilities
Detection & Response Engineering – Design, build, and tune detection systems to rapidly identify malicious activity and anomalies.
Incident Response (IR) – Lead CoreWeave’s incident management program, ensuring swift, coordinated, and effective responses to security events.
Offensive Security – Oversee red team and penetration testing operations to proactively identify and remediate vulnerabilities before they can be exploited.
About The Role – Detection & Response Engineering
Build, manage, and optimize advanced detection capabilities across cloud, infrastructure, and endpoint environments.
Develop automation and orchestration for alert triage, investigation, and containment.
Continuously refine detections using threat intelligence, behavioral analytics, and adversary emulation.
About The Role – Incident Response
Establish and maintain CoreWeave’s incident response playbooks, escalation processes, and tooling.
Lead high‑severity incident investigations, coordinating with technical and executive stakeholders.
Conduct thorough post‑incident reviews and ensure timely remediation of findings.
About The Role – Offensive Security
Direct the offensive security program, including red teaming, penetration testing, and adversary simulation.
Develop scenarios that emulate real‑world threats to validate defenses.
Partner with product and engineering teams to remediate vulnerabilities and improve security‑by‑design.
Leadership & Strategy
Build and mentor a high‑performing team of security engineers and analysts.
Define security KPIs, metrics, and reporting to measure effectiveness and inform leadership.
Partner with CISO and other executives to align security priorities with business goals.
Who You Are
10+ years in cybersecurity, with 5+ years in a senior leadership role.
Proven track record in Detection & Response Engineering, Incident Response, and Offensive Security in cloud‑native or large‑scale infrastructure environments.
Strong expertise in SIEM/SOAR platforms, endpoint detection, and cloud‑native security tools.
Deep understanding of adversary TTPs, MITRE ATT&CK framework, and threat hunting methodologies.
Experience leading cross‑functional security programs in high‑growth, fast‑paced environments.
Excellent communication skills with the ability to influence technical and non‑technical stakeholders.
Preferred
Experience in GPU cloud, HPC, or large‑scale distributed computing environments.
Compensation The base salary range for this role is
$206,000 to $303,000 . The starting salary will be determined based on job‑related knowledge, skills, experience, and market location. In to base salary, compensation includes a discretionary bonus, equity awards, and a comprehensive benefits program.
Benefits
Medical, dental, and vision insurance – 100% paid for by CoreWeave
Company‑paid Life Insurance
Voluntary supplemental life insurance
Short and long‑term disability insurance
Flexible Spending Account
Health Savings
Tuition Reimbursement
Employee Stock Purchase Program (ESPP)
Mental Wellness Benefits through Spring Health
Family‑Forming support provided by Carrot
Paid Parental Leave
Flexible, full‑service childcare support with Kinside
401(k) with a generous employer match
Flexible PTO
Catered lunch each day in our office and data center locations
A casual work environment
Work culture focused on innovative disruption
Work Environment While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration.
Equal Employment Opportunity CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.
As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.
Export Control Compliance This position requires access to export controlled information. To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. 1157, or (iv) asylee under 8 U.S.C. 1158, (B) eligible to access the export controlled information without a required export authorization, or (C) eligible and reasonably likely to obtain the required export authorization from the applicable U.S. government agency. CoreWeave may, for legitimate business reasons, decline to pursue any export licensing process.
#J-18808-Ljbffr
What You’ll Do We are seeking a Director of Detection and Response Engineering to lead our security detection, incident response, and offensive security teams. This senior leader will design and execute strategies to identify, contain, and mitigate threats while proactively testing and hardening our defenses.
Responsibilities
Detection & Response Engineering – Design, build, and tune detection systems to rapidly identify malicious activity and anomalies.
Incident Response (IR) – Lead CoreWeave’s incident management program, ensuring swift, coordinated, and effective responses to security events.
Offensive Security – Oversee red team and penetration testing operations to proactively identify and remediate vulnerabilities before they can be exploited.
About The Role – Detection & Response Engineering
Build, manage, and optimize advanced detection capabilities across cloud, infrastructure, and endpoint environments.
Develop automation and orchestration for alert triage, investigation, and containment.
Continuously refine detections using threat intelligence, behavioral analytics, and adversary emulation.
About The Role – Incident Response
Establish and maintain CoreWeave’s incident response playbooks, escalation processes, and tooling.
Lead high‑severity incident investigations, coordinating with technical and executive stakeholders.
Conduct thorough post‑incident reviews and ensure timely remediation of findings.
About The Role – Offensive Security
Direct the offensive security program, including red teaming, penetration testing, and adversary simulation.
Develop scenarios that emulate real‑world threats to validate defenses.
Partner with product and engineering teams to remediate vulnerabilities and improve security‑by‑design.
Leadership & Strategy
Build and mentor a high‑performing team of security engineers and analysts.
Define security KPIs, metrics, and reporting to measure effectiveness and inform leadership.
Partner with CISO and other executives to align security priorities with business goals.
Who You Are
10+ years in cybersecurity, with 5+ years in a senior leadership role.
Proven track record in Detection & Response Engineering, Incident Response, and Offensive Security in cloud‑native or large‑scale infrastructure environments.
Strong expertise in SIEM/SOAR platforms, endpoint detection, and cloud‑native security tools.
Deep understanding of adversary TTPs, MITRE ATT&CK framework, and threat hunting methodologies.
Experience leading cross‑functional security programs in high‑growth, fast‑paced environments.
Excellent communication skills with the ability to influence technical and non‑technical stakeholders.
Preferred
Experience in GPU cloud, HPC, or large‑scale distributed computing environments.
Compensation The base salary range for this role is
$206,000 to $303,000 . The starting salary will be determined based on job‑related knowledge, skills, experience, and market location. In to base salary, compensation includes a discretionary bonus, equity awards, and a comprehensive benefits program.
Benefits
Medical, dental, and vision insurance – 100% paid for by CoreWeave
Company‑paid Life Insurance
Voluntary supplemental life insurance
Short and long‑term disability insurance
Flexible Spending Account
Health Savings
Tuition Reimbursement
Employee Stock Purchase Program (ESPP)
Mental Wellness Benefits through Spring Health
Family‑Forming support provided by Carrot
Paid Parental Leave
Flexible, full‑service childcare support with Kinside
401(k) with a generous employer match
Flexible PTO
Catered lunch each day in our office and data center locations
A casual work environment
Work culture focused on innovative disruption
Work Environment While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration.
Equal Employment Opportunity CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.
As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.
Export Control Compliance This position requires access to export controlled information. To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. 1157, or (iv) asylee under 8 U.S.C. 1158, (B) eligible to access the export controlled information without a required export authorization, or (C) eligible and reasonably likely to obtain the required export authorization from the applicable U.S. government agency. CoreWeave may, for legitimate business reasons, decline to pursue any export licensing process.
#J-18808-Ljbffr