Senior Detection & Response Engineer [Remote]
Greystar
- Remote job
ABOUT GREYSTAR
Greystar is a leading, fully integrated global real estate platform offering expertise in property management, investment management, development, and construction services in institutional-quality rental housing. Headquartered in Charleston, South Carolina, Greystar manages and operates over $300 billion of real estate in more than 265 markets globally with offices throughout North America, Europe, South America, and the Asia-Pacific region. Greystar is the largest operator of apartments in the United States, managing over one million units/beds globally. Across its platforms, Greystar has nearly $79 billion of assets under management, including over $35 billion of development assets and over $36.5 billion of regulatory assets under management. Greystar was founded by Bob Faith in 1993 to become a provider of world-class service in the rental residential real estate business. To learn more, visit .
JOB DESCRIPTION SUMMARY
JOB DESCRIPTION
Responsibilities
Design, build, test, and tune detection rules across our SIEM and security tooling, targeting real attack techniques observed in our environment
Build scripts, automation, and API integrations (using code and AI tooling) to accelerate detection engineering, investigation, and response workflows
Lead incident response investigations end to end, from triage through containment, eradication, and closure
Perform host and cloud forensic analysis, including disk, memory, and log artifact examination to reconstruct attacker activity and establish incident timelines
Participate in an on-call rotation and perform hands-on alert and incident analysis
Analyze Microsoft 365 and Entra ID log sources including interactive sign-ins, non-interactive sign-ins, audit logs, and the unified audit log
Investigate EDR detections, perform process tree analysis, and recommend containment actions
Triage and investigate escalations from the SOC
Develop and maintain automated response playbooks
Conduct root cause analysis and determine initial access, persistence, and exfiltration methods during investigations
Apply security engineering fundamentals to improve identity security, conditional access, and endpoint posture
Produce clear, executive-ready incident briefings, IOC documentation, and technical writeups
Identify and tune false positive patterns to improve detection fidelity
Required Qualifications
6+ years in security operations, detection engineering, incident response, or a combined security engineering role
Demonstrated ability to build detections and understand the underlying logic, not just operate a tool
Hands-on digital forensics experience across endpoint and cloud, including artifact collection, timeline reconstruction, and evidence handling
Proficiency scripting and building automation (Python, PowerShell, KQL, or similar), including the effective use of AI tooling to accelerate development
Working knowledge of attacker tradecraft and the ability to attribute activity based on TTPs
Experience building or consuming API integrations across security and identity platforms
Proficiency with EDR platforms
Working knowledge of SIEM platforms and detection rule development
Strong understanding of hybrid identity environments, including AD Connect sync behavior and Entra ID
Experience investigating modern attack techniques including AiTM phishing, OAuth consent abuse, BEC, token replay, and living-off-the-land techniques
Solid security engineering fundamentals across identity, endpoint, and cloud
Willingness to participate in an on-call rotation and perform hands-on incident response
Strong written communication and documentation discipline
Preferred Qualifications
Demonstrated use of AI tools (such as Claude, Copilot, or similar) to accelerate detection engineering, investigation workflows, scripting, and documentation
Experience prompting and directing AI models to produce useful outputs in a security context, including log analysis, detection logic drafting, and incident timeline construction
Familiarity with Microsoft Sentinel, including analytic rule development using KQL and automation via Logic Apps or Playbooks
Familiarity with Microsoft Entra ID, Purview and Defender Suite
Hands-on experience with CrowdStrike Falcon, including alert triage, process tree analysis, and prevention policy management
Experience with identity security tooling such as Saviynt, Entra ID Protection, or similar IGA and privileged access platforms
Prior experience in a large enterprise or managed security environment (5,000+ endpoints or 10,000+ users)
Relevant certifications such as GCIA, GCIH, GCFE, GCFA, SC-200, AZ-500, or equivalent
What You'll Work On
This is a hands-on role with real ownership. You will build the detections that protect Greystar, respond to the incidents they surface, and continuously improve coverage based on what you learn in the field. You will write the automation that makes the team faster, investigate live compromises, and have direct input into detection strategy, SIEM direction, and identity security architecture. You will work directly with the Senior Manager of Cybersecurity Operations on initiatives including our SIEM migration to Microsoft Sentinel and ongoing detection engineering buildout.
Additional Compensation :
Many factors go into determining employee pay within the posted range including business requirements, prior experience, current skills and geographical location.
Corporate Positions : In addition to the base salary, this role may be eligible to participate in a quarterly or annual bonus program based on individual and company performance.
Onsite Property Positions : In addition to the base salary, this role may be eligible to participate in weekly, monthly, and/or quarterly bonus programs.
Robust Benefits Offered*:
Competitive Medical, Dental, Vision, and Disability & Life insurance benefits. Low (free basic) employee Medical costs for employee-only coverage; costs discounted after 3 and 5 years of service.
Generous Paid Time off. All new hires start with 15 days of vacation, 4 personal days, 10 sick days, and 11 paid holidays. Plus your birthday off after 1 year of service! Additional vacation accrued with tenure.
For onsite team members, onsite housing discount at Greystar-managed communities are available subject to discount and unit availability.
6-Week Paid Sabbatical after 10 years of service (and every 5 years thereafter).
401(k) with Company Match up to 6% of pay after 6 months of service.
Paid Parental Leave and lifetime Fertility Benefit reimbursement up to $10,000 (includes adoption or surrogacy).
Employee Assistance Program.
Critical Illness, Accident, Hospital Indemnity, Pet Insurance and Legal Plans.
Charitable giving program and benefits.
*Benefits offered for full-time employees. For Union and Prevailing Wage roles, compensation and benefits may vary from the listed information above due to Collective Bargaining Agreements and/or local governing authority.
Greystar will consider for employment qualified applicants with arrest and conviction records.
Important Notice: Greystar will never request your banking details or other sensitive personal information during the interview process. Greystar does not conduct any interviews via text or messaging, and all communication will come from official Greystar email addresses (@greystar.com). If you receive suspicious requests, please report them immediately to View email address on jobs.greystar.com.
- Ektello is seeking a Senior Security Engineer specializing in Threat Detection and Response. This remote, 12-month contract role focuses on automating security detection, investigating incidents, and collaborating with cross-functional teams to enhance security capabilities...SeniorRemote jobContract work
$150k - $190k
Role Description We are looking for a Detection & Response Engineer to join our Threat Detection & Response team. You'll build, tune, and maintain detection logic across a modern cloud-native security stack, investigate alerts and incidents end-to-end, and help mature our...SeniorFull timeFlexible hours$143k - $207k
...moments that matter. You streamline the response process through automation and make sure... ...to learn from analysts, data scientists, engineers, and responders responsible for various... ...iteratively improve Expel's ability to detect and investigate threats using integrated...SeniorRemote jobImmediate startVisa sponsorshipShift work- ...professional for an Information Security role specializing in detection engineering. This remote position offers the opportunity to enhance... ...operations and a strong command of the Splunk tool. Responsibilities include analyzing security events, reviewing policies, and...SeniorRemote job
$98k - $176k
...and win together. Join our team as a Senior Engineer and take a lead in building tools to... ...account takeovers to name a few. Core responsibilities are described within this job description... ...Interested in cyber threat or fraud detection Ability to demonstrate analytical...SeniorFull timeTemporary workWork experience placementWorldwideFlexible hours- ...expertise to every case. We are hiring a Sr. Systems Engineer (Endpoint Detection & Response) to work in Fort Meade, MD . Position location is... ...Required: TS/SCI with a Polygraph Description: The Senior Systems Engineer (Level 3) serves as a principal...SeniorFull timeLocal areaWork from homeFlexible hours
- ...Lumen Technologies is seeking an SR INFORMATION SECURITY ENGINEER to join their Cybersecurity Incident Response Team (CIRT). In this role, you will actively respond to and mitigate cybersecurity threats while collaborating on innovative security strategies. Ideal candidates...SeniorRemote work
- Blackbaud is seeking a Sr. Manager of Cyber Threat Detection and Response to lead the detection engineering and incident response teams. Responsibilities include developing threat detection frameworks and managing incident response efforts across varied security operations...SeniorRemote workFlexible hours
- ...Senior Security Analyst This role supports Walgreens' Threat Detection and Response function, focusing on investigating and responding to security incidents across the enterprise. As a senior-level individual contributor, you will serve as an escalation point, owning...SeniorWork at officeRemote work
- ...team first mentality, we may be the right place for you. About the Role Fortis Games is looking for a Senior Security Operations Engineer, Detection and Response to help build and mature our security operations capability. This is a senior, hands-on role for someone...SeniorRemote jobFull timeWeekend work
- ...Security programs. This remote position involves performing threat detection, analysis, and mitigation to protect the Bank's networks. The ideal candidate will have significant experience in detection engineering and proficiency with tools like Splunk and CrowdStrike. Strong...SeniorRemote job
- ...is seeking a skilled cybersecurity professional to lead threat detection and analysis efforts. In this fully remote role, you will... ...The ideal candidate will have a strong background in detection engineering and a comprehensive understanding of cybersecurity operations....SeniorRemote job
- A leading cybersecurity firm is seeking a Senior Security Engineer specialized in Detection and Response to develop and implement AI-driven security solutions. This role involves building detection capabilities, leading incident responses, and enhancing cloud security...SeniorRemote workFlexible hours
$192k - $242.5k
Role Description Instacart's Detection Engineering team sits at the core of our Security organization... ...and signal design to automated response — across a complex, cloud-native environment... ..., cloud, container, and SaaS. As a Senior Detection Engineer, you'll be a...SeniorFull timeRemote workShift work$190k - $210k
Role Description The Senior Threat Detection Engineer at Jones Lang LaSalle (JLL) leads the engineering, creation, and tuning of advanced detection... ...environments from sophisticated threat actors. Key Responsibilities ~Detection Engineering: Design, implement, and tune...SeniorDaily paidFull timeRemote work$159.8k - $235k
Role Description The Threat Response Engineer, Security Operations will be responsible for conducting... ...required. You will report into the Senior Manager, Cyber Defense in the Security... ...as required ~Use monitoring and detection platforms to investigate anomalous activity...SeniorHourly payFull timeFlexible hoursWeekend work$89.01k - $142.19k
...consider yourself an innovator in threat detection? About the role: You will be entrusted as the senior most technical member of the incident response team for our global information... ...exploitation techniques, malware reverse engineering, threat analysis, and security...SeniorFull time$101.9k - $132.8k
Role Description We are looking for a savvy, high-performing Threat Detection Engineer who will be responsible for the day-to-day management of company-wide information security toolsets and the protection of Blackbaud’s and Client’s information. Security Engineers diligently...SeniorFull timeRemote workFlexible hours$117.6k - $161.7k
...South Florida (Tampa/Miami/Ft Lauderdale), Washington DC metro, Chicago, Boston, Atlanta, Nashville. The Senior Digital Forensics and Incident Response Engineer provides forensics technical expertise and investigations support to EIP CyberSecurity defense stakeholders...SeniorFull timeTemporary workFor contractorsApprenticeshipRemote workWork from homeRelocationHome office- ...Senior Midmarket Account Executive: Detection & Response Antigen Security is a rapidly growing Technology Services Distributor specializing in comprehensive cybersecurity solutions. By leveraging top-tier products tailored to specific threats and systems, we help organizations...SeniorWork experience placementRemote work
$125 per hour
Senior Security Engineer, Threat Detection and Response Location: Remote - Position Type: 12‑month contract (hire & multi‑extension capability). Rate: $125.00 /hr, negotiable. Summary The Threat Detection and Response team (TDR) is focused on automating security detection...SeniorContract workRemote work- ...autonomous driving solutions, the full-time Senior Perception Engineer will design end-to-end perception systems for road network detection, improve model robustness and accuracy,... ...while working remotely or onsite. Key responsibilities Design end-to-end solutions for...SeniorFull timeRemote work
- ...The Senior PBAC Engineer helps architect, deploy and operate a secure application infrastructure... ...with business needs. The position is responsible for developing security solutions at... ...other LDAP Directory Services, Intrusion Detection, Security Policies / GPOs, Operating...SeniorRemote work
- ...DevOps Engineer We are seeking a talented and experienced DevOps Engineer to join our... ..., and automate repetitive tasks. Responsibilities Design, implement, and maintain CI/CD... ..., and alerting solutions for proactive detection and resolution of issues. Ensure compliance...SeniorRemote work
$130.9k - $196.3k
...Security Operations Center (SOC) team is responsible for a broad range of security... ...collaboration across the organization. As a Senior SOC Engineer , you will lead advanced security... ...You'll Do • Perform advanced threat detection, analysis, and response across...SeniorFull timeWork at officeFlexible hours- ...Electrical Engineer We're AtkinsRéalis, a world class Engineering Services and Nuclear... ..., Telecom and street lighting Clash detection and co-ordination with other Utilities... ...this may also include line management responsibilities. AtkinsRéalis focus is on developing our...SeniorRemote workFlexible hours
$116k
...professional growth. Job Title Senior Endpoint Engineer Location New York Regular/... ...as a hands-on technical authority responsible for designing, engineering, and supporting... ...using telemetry to monitor health, detect trends, and drive proactive...SeniorTemporary workWork experience placementLocal areaRemote workFlexible hours$130k - $150k
...Title: Senior Cybersecurity Engineer Location : Chicago, IL Target Start Date : 7/20 Type: Direct... ...initiatives focused on incident response, cyber recovery, ransomware resilience... ..., and emerging threats to enhance detection and response capabilities. Develop...SeniorContract workRemote work- ...network, identity, cloud, and application environments. The position plays a hands-on role in threat detection, incident response, vulnerability management, and SIEM engineering, while partnering with IT and application teams to embed security into day-to-day operations....SeniorRemote workVisa sponsorshipWork visa
- ...Senior NOC Engineer | Cisco Meraki / SD-WAN We are looking for a Senior NOC Engineer to support... ...incidents and escalations. Main Responsibilities Monitor infrastructure, network... ..., alarms, and security events. Detect, register, classify, and manage incidents...SeniorRemote workMonday to FridayShift workNight shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Detection & Response Engineer [Remote]. Be the first to apply!
- senior game producer Remote
- senior electronic design engineer Remote
- senior robotics software engineer Remote
- senior java software engineer Remote
- senior specialist Remote
- senior research manager Remote
- senior director corporate development Remote
- senior software test engineer Remote
- senior product specialist Remote
- sr project engineer Remote


