Global Detection and Response Lead

About the Role

The role is critical in ensuring the security and integrity of Openai's systems, infrastructure, and research footprint. You will be responsible for building and mentoring high-performing teams, driving durable and continuous improvements to programs, processes, and people. With a focus on operational rigor and readiness, you will manage incident playbooks, on-call and escalation paths, tabletop exercises, and continuous improvement of response quality and speed.

Openai's Security organization is committed to enabling safe, responsible innovation at scale. As the company grows, it is investing deeply in world-class security capabilities that protect people, products, and users without slowing progress. This role is an opportunity to join a team that is pushing the boundaries of AI technology and cybersecurity.

What You Will Do

• Oversee global detection and response operations, including continuous monitoring, triage, investigation, containment, and remediation of security events
• Lead, mentor, and directly manage several small teams of senior engineers across observability, detection and response, and threat intelligence
• Hire and scale these functions deliberately and proportionately as Openai's compute footprint and platform ambitions grow
• Ensure world-class operational rigor and readiness through management of incident playbooks, on-call and escalation paths, tabletop exercises, and continuous improvement of response quality and speed
• Improve detection quality and coverage by partnering with engineering teams to ensure critical telemetry is available, reliable, and actionable across cloud, corporate, and production environments
• Deeply partner across all of Openai to evaluate and respond to emergent security concerns in a frontier AI lab environment
• Build a world-class security program capable of withstanding tier-1 adversaries by maximally embracing Openai's models to solve frontier security problems
• Develop and maintain relationships with key stakeholders, including executive leadership, engineering teams, and external partners
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies, applying this knowledge to continuously improve Openai's security posture

What We Are Looking For

• 10+ years of experience in cybersecurity, with deep expertise in detection engineering, incident response, and security operations
• Active U.S. Government security clearance (Top Secret) or willingness and eligibility to obtain one
• Mission-oriented, with unimpeachable integrity and a passion for detecting and responding to adversaries in a highly complex, fast-paced environment
• Deep experience building and leading detection and response, instrumentation/observability, and threat intelligence teams across a global footprint
• Stellar leadership skills, with a demonstrated history of driving durable and continuous improvements to programs, processes, and people
• Exceptional written and verbal communication skills, with the ability to remain calm under pressure and effectively run command of security incidents
• Deep expertise in modern observability stacks (e.g., SIEM, data lakes, EDR, cloud telemetry, logging) and detection primitives
• Understanding of modern adversary tradecraft (TTPs) and demonstrated experience translating it into practical detection strategies

Nice to Have

• Experience with AI and machine learning technologies, particularly in the context of cybersecurity
• Familiarity with cloud-based infrastructure and security platforms
• Knowledge of regulatory requirements and compliance frameworks (e.g., PCI-DSS, HIPAA, GDPR)
• Experience with agile development methodologies and DevOps practices

Benefits and Perks

• Competitive salary and equity package
• Comprehensive health, dental, and vision insurance
• Flexible PTO and holidays
• Remote work stipend and equipment budget
• Professional development opportunities, including training and conference sponsorships
• Access to cutting-edge technologies and tools
• Collaborative and dynamic work environment with a team of experienced professionals
• Opportunities for career growth and advancement within the company

• When applying, be sure to highlight your experience with detection engineering, incident response, and security operations, as well as your leadership skills and ability to build high-performing teams.
• Familiarize yourself with Openai's technology stack and security architecture to demonstrate your knowledge and interest in the company's specific challenges.
• Prepare to discuss your experience with modern observability stacks, detection primitives, and threat intelligence, as well as your understanding of modern adversary tradecraft.
• Be ready to provide specific examples of your accomplishments in previous roles, including metrics and outcomes that demonstrate your impact.
• Research the company culture and values to ensure you are a good fit, and be prepared to ask thoughtful questions during the interview process.
• Consider creating a portfolio or sample project that showcases your skills and experience in cybersecurity, particularly in the areas of detection and response.