Senior Threat Detection Engineer - Insider Threat

About the position The Detection Engineering and Threat Hunting team builds high-fidelity detection content. We partner closely with internal stakeholders and leverage Datadog's own security products to continuously evolve our detection and response capabilities. As a Senior Detection Engineer focused on insider threats, you'll help drive the roadmap and take ownership of designing, deploying, and tuning detections that identify misuse of access, process mistakes, and external access to internal infrastructure. You'll work closely with Legal, HR, and Trust & Safety to handle sensitive cases with discretion, while continuously refining signal fidelity and reducing noise. At Datadog, we place value in our office culture - the relationships and collaboration it builds and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them. Responsibilities • Learn everything about detecting threats in modern enterprise environments and turn those insights into detections, automations, and defenses that make Datadog more secure. • Develop detections that uncover misuse of internal tooling and services, helping expose risky or unauthorized activity. • Owns the entire detection lifecycle from ideation to production and maintenance • Partner with the Threat Intelligence team to research threats and improve visibility across Datadog's environment. • Mentor and support junior security engineers on the team while functionally leading one or more detection work streams. • Identify inefficiencies in the detection development processes and create innovative tooling and automation to accelerate development Requirements • You have experience in detection engineering, threat hunting, or security operations with a focus on insider risk, user behavior, or identity-centric threats. • You're comfortable analyzing telemetry from identity systems (e.g., Okta, Google Workspace), SaaS apps, endpoints, and cloud platforms to detect anomalies and misuse. • Experience working closely with threat intelligence teams to research threats and translate insights into detections. • Experience detecting threats through a wide variety of technologies and datasets using a modern detection engineering approach • Expert proficiency with Python, Golang or other programming languages • Experience measuring the quantitative and qualitative effectiveness of security controls to make data-driven decisions Benefits • New hire stock equity (RSUs) and employee stock purchase plan (ESPP) • Continuous professional development, product training, and career pathing • Intradepartmental mentor and buddy program for in-house networking • An inclusive company culture, ability to join our Community Guilds (Datadog employee resource groups) • Access to Inclusion Talks, our internal panel discussions • Free, global mental health benefits for employees and dependents age 6+ • Competitive global benefits Apply tot his job