Asana is looking for a Staff Security Engineer to join our Detection and Response team. You will be able to bring your experience to an engineering-first team focused on building out the systems and pipelines needed to fuel best-in-class detection and response across Asana Security, including developing our ability to perform complex detection logic and automate response activities. You will be helping to build and advise on the systems we employ to generate, collect, and surface signal to allow for detection of malicious activity on and directed towards Asana the product and company. 

Our team is engineering-first, applying software engineering principles to cut through the noise and toil of threat detection and response. We believe as engineers we can and should automate manual work whenever possible. We provide detection frameworks and response playbooks to enable teams across security to detect and be able to respond promptly to threats.The team weighs build-vs-buy options, developing tools and systems in house along with assessing vendor solutions when applicable. 

What you’ll achieve

• Deploy detections, automations, and alerts using modern software engineering practices (i.e. automated testing/validation, CI/CD pipelines, detections as code, etc.)
• Ensure our logging and alerting infrastructure provides adequate coverage of key areas
• Identify and prioritize data sources necessary for performing detection, investigation and response 
• Develop best practices around data ingestion, normalization and enrichment to deliver the most high-signal detections to investigators
• Participate in maturing the incident response and investigative capabilities of Asana
• Collaborate internally and with industry partners on technical blog posts, conference talks, and other materials.

About you

• You are a software engineer with 5+ years experience writing code and working in threat detection and/or response (python experience a must)
• You have working knowledge of AWS infrastructure and are comfortable with infrastructure-as-code tooling like Terraform
• You are comfortable making calls on where to prioritize work based on your knowledge of applicable threats and frameworks to SaaS companies. You believe in signal above noise.
• You possess strong written communication skills. You enjoy writing technical documentation and proposals.
• You are interested in driving technical direction and execution for more junior engineers.

What we’ll offer

Our comprehensive compensation package plays a big part in how we recognize you for the impact you have on our path to achieving our mission. We believe that compensation should be reflective of the value you create relative to the market value of your role. To ensure pay is fair and not impacted by biases, we’re committed to looking at market value which is why we check ourselves and conduct a yearly pay equity audit. 

For this role, the estimated base salary range is between $202,000 -$316,000. The actual base salary will vary based on various factors, including market and individual qualifications objectively assessed during the interview process. The listed range above is a guideline, and the base salary range for this role may be modified.

In addition to base salary, your compensation package may include additional components such as equity, sales incentive pay (for most sales roles), and benefits. If you’re interviewing for this role, speak with your Talent Acquisition Partner to learn more about the total compensation and benefits for this role.

#LI-NA2