# Senior Security Engineer, Insider Risk

**Company**: CoreWeave
**Location**: Livingston, NJ / New York, NY / Sunnyvale, CA / Bellevue, WA/ San Franciso, CA
**Work arrangement**: hybrid
**Experience**: senior
**Job type**: full-time
**Salary**: $165,000 to $242,000
**Category**: Engineering
**Industry**: Technology

**Apply**: https://job-boards.greenhouse.io/coreweave/jobs/4674246006
**Canonical**: https://yubhub.co/jobs/job_a073ba96-c0e

## Description

As a Senior Insider Risk Engineer, you will lead the technical engineering of our user-centric monitoring capabilities. Your primary focus will be the development, tuning, and optimization of Data Loss Prevention (DLP) policies and the ingestion/analysis of cloud-native, endpoint and SaaS audit logs.

You will operate with a high degree of autonomy in designing, implementing, and evolving detection logic and telemetry pipelines, transforming raw telemetry into actionable behavioural intelligence.

**DLP Policy Engineering:** Design, develop, and deploy advanced detection logic and use cases within the Insider Risk platforms to identify unauthorized data movement, anomalous system activity, and policy violations. Independently identify gaps in detection coverage and propose, implement, and tune new DLP use cases to address emerging insider risk scenarios.

**Cloud & SaaS Telemetry Analysis:** Work with Security Engineering department to ingest and normalize high-fidelity telemetry from cloud environments, SaaS services, and endpoint agents into the Insider Risk security stack/tooling.

**Behavioural Detection Development:** Design and implement technical 'tripwires' and behavioural models that identify patterns associated with data exfiltration, such as unusual download volumes, unauthorized file sharing, or anomalous access to sensitive repositories.

**Data Pipeline Oversight:** Define telemetry requirements and partner with Security Engineering to build and maintain high-fidelity data pipelines from DLP agents and cloud providers into our monitoring platforms.

**Technical Incident Support:** Serve as the technical subject matter expert during complex investigations, providing deep-dive forensic analysis, log reconstruction and evidence gathering and preservation. Drive improvements to investigative tooling, detection feedback loops, and post-incident telemetry requirements.

**Infrastructure Maintenance:** Manage the health, configuration, and continuous optimization of the Insider Risk technology stack.

## Skills

### Required
- Data Loss Prevention (DLP)
- Cloud-native security tools
- Endpoint agents
- SaaS services
- Security Engineering

### Nice to have
- User and Entity Behaviour Analytics (UEBA)
- Cloud Security Posture Management (CSPM)
- Data classification frameworks
- Global privacy regulations
- High-sensitivity environments