Key skills
AILLMOpenAIClaudeIAMOktaSSOCloudflareSaaSCollaborationZero Trust
About this role
Monarch is a powerful, all-in-one personal finance platform designed to help make the complexity of finances feel simple again. They are seeking a Senior Security Engineer, Detection and Response to build detection, automation, and response capabilities while using AI to enhance security processes and tools.
Responsibilities:
- Build a detection engineering program and supporting infrastructure
- Author and maintain detections and build alerting pipelines that feed triage and incident response
- Investigate and respond to security incidents
- Drive security configuration and policy for enterprise AI platforms (Claude Enterprise, OpenAI)
- Use AI daily to transform how detection, response and corporate security operates — building LLM-augmented workflows for detection, triage, automation, and internal tooling
- Partner with IT to harden SaaS platforms and endpoints (Iru/Kandji MDM, CrowdStrike Falcon EDR)
- Mature DLP program covering SaaS, email, endpoints, and AI prompt exfiltration paths
Requirements:
- 5+ years in security engineering with demonstrated depth in detection & incident response and corporate security, using SIEM and in collaboration with MDR providers
- Detection engineering and incident response experience — ability to build and maintain detection infrastructure, workflows, author detections, triage alerts, and run security incidents end-to-end
- Hands-on experience administering enterprise AI platform controls (Claude Enterprise or OpenAI Enterprise admin — SSO/SCIM, audit logging, managed settings, usage governance)
- Hands-on experience securing SaaS and working with Iru (Kandji) or equivalent MDM and Okta workforce identity — understanding security hardening, device trust, and IAM policy even if not the primary administrator
- Integrated AI fluency — actively uses AI tools to accelerate security work, build automation, and ship internal tooling
- Cloudflare Zero Trust / ZTNA experience (Access, Gateway, WARP, Tunnel)
- DLP program experience (Cyberhaven, Nightfall, or similar)
- SaaS security posture tooling experience (Nudge Security, Push Security, or similar)
- Fintech or financial services background
- Relevant certifications: CISSP, CCSP, GCFA, CrowdStrike certifications