Security Engineer - Threat Intelligence

Location: Sydney, United States

Department: Engineering

Employment Type: Full time

About Snap Inc

Snap Inc is a technology company. We believe the camera presents the greatest opportunity to improve the way people live and communicate. Snap contributes to human progress by empowering people to express themselves, live in the moment, learn about the world, and have fun together.

About the Role

Snap Inc is a camera company that believes the camera and AR represent the greatest opportunity to improve the way people live and communicate. Our products—Snapchat, Lens Studio, and Spectacles—empower hundreds of millions of Snapchatters to express themselves, live in the moment, and innovate with AR every day. Snap Engineering teams build fun, technically sophisticated products with privacy at the forefront, reaching a global community. We're seeking a Security Engineer - Threat Intelligence to join our Detection and Response (D&R) team in Sydney, collaborating with global teams in the US and Switzerland. In this role, you'll track sophisticated threat actors targeting our camera-driven platforms and AR innovations, engineering threat-informed solutions to protect Snapchat's visual messaging, Lens Studio creations, and Spectacles hardware from evolving adversaries. You'll identify emerging TTPs across APT and cybercrime ecosystems, proactively monitor campaigns impacting Snap, and innovate detection tools using AI and automation. Design robust logging for our cloud environments (Kubernetes, GCP, AWS), lead incident responses across endpoints and infrastructure, and neutralize threats to our creative, real-time experiences. This isn't a typical analyst role—dedicate time to research and development, ensuring Snap stays ahead in securing AR and camera tech for the world. If you're passionate about defending innovative platforms that blend camera technology with AR creativity, join our fast-moving, precise culture. Make a global impact protecting a community of millions. Snap is committed to diversity, equal opportunity, and our 'Default Together' policy (4+ days in office). We offer comprehensive benefits including medical coverage, parental leave, mental health support, and equity in our success.

What You'll Do

• Identify, analyze, and develop threat intelligence on emerging adversary TTPs across APT and cybercrime ecosystems
• Proactively track, model, and monitor threat actors and campaigns targeting Snap Inc's platforms
• Research and innovate new detection and response capabilities, developing tools and automations for threat hunting and incident response
• Leverage AI and automation to build scalable intelligence and response systems protecting Snapchat's camera features and AR experiences
• Design, pilot, and implement logging and alerting systems to detect malicious activity across endpoints, infrastructure, networks, and cloud environments
• Lead and coordinate incident response efforts, collaborating with global Snap teams to investigate and mitigate threats
• Protect production environments, corporate infrastructure, and internal tools serving hundreds of millions of Snapchatters
• Partner with engineering teams to secure Lens Studio and Spectacles AR innovations against sophisticated adversaries
• Drive continuous improvement in Snap’s detection, intelligence, and response capabilities with a threat-informed engineering mindset
• Neutralize threats impacting Snap's visual messaging, AR platforms, and global user community

Minimum Qualifications

• Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
• 3+ years of experience in incident response, detection engineering, or related security disciplines
• Proven experience in threat intelligence, threat hunting, digital forensics, malware analysis, or incident response/management
• Strong development skills in Python and/or Go
• Understanding of operating system internals in at least two of: macOS, Windows, Linux (including file/disk structures, forensics, security controls, hardening)
• Advanced knowledge of cloud infrastructure in at least two of: Kubernetes, Google Cloud Platform, Amazon Web Services
• Experience building and deploying systems and investigating security events in cloud environments

Preferred Qualifications

• Experience tracking APT and cybercrime threat actors and campaigns
• Background in leveraging AI and automation for threat detection and response
• Familiarity with AR platforms or camera-based technologies in security contexts
• Global collaboration experience across US, Europe, and APAC teams
• Contributions to open-source security tools or research publications

Knowledge, Skills & Abilities

• Threat intelligence analysis
• Threat hunting techniques
• Digital forensics and malware analysis
• Incident response and management
• Python programming
• Go programming
• macOS internals and security
• Windows internals and forensics
• Linux hardening and scripting
• Kubernetes deployment and security
• Google Cloud Platform event investigation
• Amazon Web Services security
• AI and automation for security
• Cloud logging and alerting design
• Cross-functional collaboration
• Threat actor tracking and modeling
• Research and innovation mindset
• Global team coordination

Our Benefits

• Paid parental leave
• Comprehensive medical coverage
• Emotional and mental health support programs
• Compensation packages with equity to share in Snap’s long-term success
• Office-based “Default Together” policy fostering dynamic collaboration 4+ days per week
• Global community perks supporting work-life balance
• Opportunities to innovate on camera technology and AR products
• Diverse, inclusive culture reinforcing Snap's creative values

"Default Together" Policy: At Snap Inc, we practice a "default together" approach and expect team members to work in an office 4+ days per week.

Snap is proud to be an equal opportunity employer.