Who you are

• 5+ years of experience in data engineering, with a focus on large-scale data systems and operations
• Strong proficiency in Python, SQL, and distributed data processing frameworks (Spark, Kafka, etc.)
• Proven experience building and maintaining production data pipelines that handle high-volume, high-velocity data
• Expertise with cloud data platforms (AWS, GCP, or Azure) and infrastructure-as-code practices
• Experience with data storage solutions, including data lakes, warehouses, and more
• Strong understanding of data quality, monitoring, and operational best practices
• Familiarity with containerization (Docker, Kubernetes) and CI/CD practices
• Cybersecurity domain knowledge
• Experience with security data formats and sources (SIEM, EDR, network logs, threat feeds)
• Familiarity with Elastic/OpenSearch and other data platforms
• Background in stream processing frameworks (Kafka Streams, Apache Flink, etc.)
• Experience with modern data architecture patterns
• Knowledge of compliance requirements for security data handling

What the job involves

• Halcyon is building the most resilient anti-ransomware platform on the market, and we need a Senior Security Data Engineer to power our data infrastructure
• You'll be responsible for building and maintaining the robust data pipelines that ingest, process, and deliver critical security data, which powers our decisions and analytics
• In this role, you'll implement and operate large-scale data systems that handle large volumes of behavioral, network, file, and product signals
• You'll ensure our teams have reliable, real-time access to the data they need to protect our customers from ransomware attacks
• This is a hands-on engineering role focused on building production-grade data infrastructure
• You'll work with varied security data to optimize for both performance and reliability, and directly enable our product's defensive capabilities through robust data operations
• Design, build, and maintain scalable data pipelines for ingesting security data from endpoints, networks, and threat intelligence sources
• Implement and optimize both batch and real-time streaming data processing systems to support detection and prevention workflows
• Ensure data quality, reliability, and availability across all security data platforms and services
• Build and maintain data storage solutions optimized for high-volume security telemetry and fast query performance
• Collaborate with security researchers and product teams to understand data requirements and deliver reliable data services
• Monitor and troubleshoot data pipeline performance, implementing automated alerting and recovery systems
• Establish data governance processes and implement security controls for sensitive threat data
• Optimize data infrastructure costs while maintaining performance and reliability standards

Benefits

• A Remote Native Global Team - As a remote first, completely distributed team, we recognize great talent can exist anywhere. We invite you to apply to a job you’re interested in and we'll work a plan to meet your needs.
• Health & Wellness - We offer comprehensive health benefits to meet you and your family’s needs, including 100% covered Medical, Dental and Vision insurance for you and all your dependents.
• Competitive Compensation Packages - We offer competitive compensation packages with equity, depending on position, along with a generously matched retirement plan, unlimited PTO, paid sick time and holidays
• Future Planning & Time Off - We offer paid time off to take care of yourself! Relax and recharge on us. We also include paid parental leave, short & long term disability insurance, life insurance and more