Obsidian Security
Founded in 2017, Obsidian Security has grown into a global SaaS security platform that protects more than 200 organizations across North America, Europe, the Middle East, Southeast Asia, Australia, and New Zealand. Our platform delivers real-time threat detection and response across Microsoft 365, Salesforce, and thousands of other SaaS‑based applications, reducing risk, speeding incidents, and preventing breaches at the source.
About the Role We are looking for a Security Research Engineer who will help build the next generation of identity‑focused detections. Your deep technical expertise and curiosity will drive the evolution of our detection pipeline and advance product direction.
What You’ll Do
Research emerging attack techniques across IdPs, SaaS, and cloud environments.
Analyze adversary behaviors such as credential abuse, session hijacking, privilege escalation, and persistence.
Publish insights through blogs, whitepapers, presentations, and other community engagements.
Data Analysis & Signal Development
Analyze large volumes of identity and SaaS telemetry to uncover indicators and behavioral patterns.
Run hypothesis‑driven experiments that boost detection accuracy.
Detection Engineering
Translate research into rules, heuristics, anomalies, and behavioral models.
Partner with engineering to enhance detection pipeline performance.
Validate detections against simulated attacks and real‑world data.
Cross‑Functional Collaboration
Coordinate with product teams on detection priorities.
Work closely with engineering on telemetry quality and pipeline improvements.
Share findings with customer‑facing teams and assist in investigations when required.
What We’re Looking For
2–3 years of experience in security research, detection engineering, threat intelligence, or a related field.
Proven track record of building detections and handling large data sets.
In‑depth knowledge of identity ecosystems (Okta, Azure AD/Entra, Google Workspace, etc.) and authentication flows.
Familiarity with cloud/SaaS attack surfaces and ATT&CK tactics, techniques, and procedures.
Strong log and signal analysis skills across IdPs, cloud services, and SaaS applications.
Experience validating rule‑, anomaly‑, and behavior‑based detections.
Hands‑on experience with scalable data pipelines (Spark, Databricks, or similar).
Python and SQL proficiency.
Bonus: threat‑simulation or red/blue‑teaming experience.
Why Join Us
Shape core detection capabilities in an early‑stage, high‑growth company.
Collaborate with seasoned security engineers who value creativity and practicality.
Directly influence product direction and customer outcomes.
Enjoy a culture of learning, autonomy, and rapid execution.
Employee Benefits Our competitive benefits package is crafted to support you both professionally and personally. For U.S. employees, the benefits include:
Competitive compensation with equity and 401(k) matching.
Comprehensive health, dental, and vision coverage.
Flexible paid time off and paid holidays.
12 weeks of new parent or family leave.
Personal and professional development resources.
Pay Transparancy The base pay range is a guideline; final pay will vary by location, skills, and experience. In addition to a competitive base salary, you may be eligible for equity awards and, depending on the role, incentive or commission compensation.
Equal‑Opportunity Employer At Obsidian, we are an equal‑opportunity employer. We value diversity and hire for talent, passion, and compassion. In compliance with federal law, all applicants will be required to submit satisfactory proof of identity and legal authorization. If you need an accommodation, please contact accommodations@obsidiansecurity.com. All personal data collected during the application process is protected under Obsidian’s Applicant Privacy Policy.
#J-18808-Ljbffr
About the Role We are looking for a Security Research Engineer who will help build the next generation of identity‑focused detections. Your deep technical expertise and curiosity will drive the evolution of our detection pipeline and advance product direction.
What You’ll Do
Research emerging attack techniques across IdPs, SaaS, and cloud environments.
Analyze adversary behaviors such as credential abuse, session hijacking, privilege escalation, and persistence.
Publish insights through blogs, whitepapers, presentations, and other community engagements.
Data Analysis & Signal Development
Analyze large volumes of identity and SaaS telemetry to uncover indicators and behavioral patterns.
Run hypothesis‑driven experiments that boost detection accuracy.
Detection Engineering
Translate research into rules, heuristics, anomalies, and behavioral models.
Partner with engineering to enhance detection pipeline performance.
Validate detections against simulated attacks and real‑world data.
Cross‑Functional Collaboration
Coordinate with product teams on detection priorities.
Work closely with engineering on telemetry quality and pipeline improvements.
Share findings with customer‑facing teams and assist in investigations when required.
What We’re Looking For
2–3 years of experience in security research, detection engineering, threat intelligence, or a related field.
Proven track record of building detections and handling large data sets.
In‑depth knowledge of identity ecosystems (Okta, Azure AD/Entra, Google Workspace, etc.) and authentication flows.
Familiarity with cloud/SaaS attack surfaces and ATT&CK tactics, techniques, and procedures.
Strong log and signal analysis skills across IdPs, cloud services, and SaaS applications.
Experience validating rule‑, anomaly‑, and behavior‑based detections.
Hands‑on experience with scalable data pipelines (Spark, Databricks, or similar).
Python and SQL proficiency.
Bonus: threat‑simulation or red/blue‑teaming experience.
Why Join Us
Shape core detection capabilities in an early‑stage, high‑growth company.
Collaborate with seasoned security engineers who value creativity and practicality.
Directly influence product direction and customer outcomes.
Enjoy a culture of learning, autonomy, and rapid execution.
Employee Benefits Our competitive benefits package is crafted to support you both professionally and personally. For U.S. employees, the benefits include:
Competitive compensation with equity and 401(k) matching.
Comprehensive health, dental, and vision coverage.
Flexible paid time off and paid holidays.
12 weeks of new parent or family leave.
Personal and professional development resources.
Pay Transparancy The base pay range is a guideline; final pay will vary by location, skills, and experience. In addition to a competitive base salary, you may be eligible for equity awards and, depending on the role, incentive or commission compensation.
Equal‑Opportunity Employer At Obsidian, we are an equal‑opportunity employer. We value diversity and hire for talent, passion, and compassion. In compliance with federal law, all applicants will be required to submit satisfactory proof of identity and legal authorization. If you need an accommodation, please contact accommodations@obsidiansecurity.com. All personal data collected during the application process is protected under Obsidian’s Applicant Privacy Policy.
#J-18808-Ljbffr