Top Benefits
Premium medical, dental, and vision insurance
Parental leave
Annual lifestyle stipend
About the role
Who you are
- 5+ years of software engineering experience, including 2+ years building and operating large-scale distributed systems or real-time data pipelines
- Proficiency in Go or Python, with strong debugging and performance optimization skills
- Experience with streaming and data processing systems (Kafka, Databricks/Spark, Vector.dev) and log storage or analytics platforms (Falcon Logscale, Splunk)
- Working knowledge of security detection and response workflows, and familiarity with telemetry pipelines
- Solid understanding of cloud-native infrastructure (AWS/GCP/Azure), Kubernetes, and Infrastructure as Code (Terraform)
- Proven ability to deliver independently, drive initiatives to completion, and communicate effectively across teams in Security and Platform engineering
- Preferred experience building or extending security data platforms (SIEM, SOAR, or custom D&R frameworks)
- Preferred familiarity with regulated environments (SOX, SOC 2, FINRA)
- Preferred experience with runtime monitoring tools such as eBPF, Tetragon, Falco, Sysmon, or auditd
What the job involves
- The Detection and Response Platform team protects the security and privacy of Robinhood and its customers through rapid detection, response, and containment of cybersecurity threats and using lessons learned from incidents to inform continuous improvement of security controls
- Join a team committed to developing a robust detection and response platform that empowers the operations team to implement detections within the Robinhood environment
- We innovate and engineer scalable detection solutions, enabling teams to build and operate securely. By collaborating across product and platform engineering, you'll drive impactful solutions that seamlessly integrate detection data sources into the development lifecycle
- If you're passionate about solving real-world detection platform challenges with cutting-edge technology, this is the team for you
- The role is located in the office location(s) listed on this job description which will align with our in-office working environment. Please connect with your recruiter for more information regarding our in-office philosophy and expectations
- Design and implement scalable distributed systems that power real-time security detection and response across Robinhood’s infrastructure
- Own and operate high-throughput data pipelines that ingest and enrich telemetry from applications, cloud environments, and endpoints
- Deploy and maintain runtime monitoring sensors (e.g., eBPF-based probes) to provide deep kernel-level visibility
- Collaborate closely with Security Operations, Detection Engineering, and Platform teams to translate detection and visibility needs into durable platform features and APIs
- Contribute to technical design reviews, ensuring strong standards for scalability, data modeling, and observability
- Develop automation and orchestration tooling that reduces manual toil and accelerates incident response
- Continuously improve signal fidelity, system performance, and reliability through profiling, tuning, and testing
- Act as a technical owner for components you build—driving quality, operability, and long-term maintainability
Benefits
- Well-being - Premium medical, dental, and vision insurance
- Family & home life - Parental leave, personal prosperity benefits
- Comfort & care - Annual lifestyle stipend
- Office life - Catered meals and fully stocked kitchen, commuter benefits
- Growth - Education and training, community events, career mentorships
Top Benefits
Premium medical, dental, and vision insurance
Parental leave
Annual lifestyle stipend
About the role
Who you are
- 5+ years of software engineering experience, including 2+ years building and operating large-scale distributed systems or real-time data pipelines
- Proficiency in Go or Python, with strong debugging and performance optimization skills
- Experience with streaming and data processing systems (Kafka, Databricks/Spark, Vector.dev) and log storage or analytics platforms (Falcon Logscale, Splunk)
- Working knowledge of security detection and response workflows, and familiarity with telemetry pipelines
- Solid understanding of cloud-native infrastructure (AWS/GCP/Azure), Kubernetes, and Infrastructure as Code (Terraform)
- Proven ability to deliver independently, drive initiatives to completion, and communicate effectively across teams in Security and Platform engineering
- Preferred experience building or extending security data platforms (SIEM, SOAR, or custom D&R frameworks)
- Preferred familiarity with regulated environments (SOX, SOC 2, FINRA)
- Preferred experience with runtime monitoring tools such as eBPF, Tetragon, Falco, Sysmon, or auditd
What the job involves
- The Detection and Response Platform team protects the security and privacy of Robinhood and its customers through rapid detection, response, and containment of cybersecurity threats and using lessons learned from incidents to inform continuous improvement of security controls
- Join a team committed to developing a robust detection and response platform that empowers the operations team to implement detections within the Robinhood environment
- We innovate and engineer scalable detection solutions, enabling teams to build and operate securely. By collaborating across product and platform engineering, you'll drive impactful solutions that seamlessly integrate detection data sources into the development lifecycle
- If you're passionate about solving real-world detection platform challenges with cutting-edge technology, this is the team for you
- The role is located in the office location(s) listed on this job description which will align with our in-office working environment. Please connect with your recruiter for more information regarding our in-office philosophy and expectations
- Design and implement scalable distributed systems that power real-time security detection and response across Robinhood’s infrastructure
- Own and operate high-throughput data pipelines that ingest and enrich telemetry from applications, cloud environments, and endpoints
- Deploy and maintain runtime monitoring sensors (e.g., eBPF-based probes) to provide deep kernel-level visibility
- Collaborate closely with Security Operations, Detection Engineering, and Platform teams to translate detection and visibility needs into durable platform features and APIs
- Contribute to technical design reviews, ensuring strong standards for scalability, data modeling, and observability
- Develop automation and orchestration tooling that reduces manual toil and accelerates incident response
- Continuously improve signal fidelity, system performance, and reliability through profiling, tuning, and testing
- Act as a technical owner for components you build—driving quality, operability, and long-term maintainability
Benefits
- Well-being - Premium medical, dental, and vision insurance
- Family & home life - Parental leave, personal prosperity benefits
- Comfort & care - Annual lifestyle stipend
- Office life - Catered meals and fully stocked kitchen, commuter benefits
- Growth - Education and training, community events, career mentorships