The Proactive Threat team identifies, detects, and responds to threats before they impact Stripe's business or users
Job Summary
The Proactive Threat team identifies, detects, and responds to threats before they impact Stripe's business or users.
You will design, build, and maintain detections that identify malicious activity across Stripe's infrastructure, applications, and cloud environments.
We are builders first. Our team develops detection-as-code, automates analysis workflows, and builds tooling that scales detection and response across a complex, global environment.
Matching Summary
The Proactive Threat team identifies, detects, and responds to threats before they impact Stripe's business or users.
Skills & Requirements
Must-have
Design and build high-fidelity detections
Develop detection hypotheses
Conduct hypothesis-driven threat hunts
Perform malware analysis
Build network and endpoint detections
Partner with Threat Intelligence
Build data pipelines and automation
Nice-to-have
Adversarial mindset
Detection-as-code practices
Leverage attacker tradecraft
Minimize detection noise
Key Requirements
5+ years of experience
Writing detection logic in modern SIEM platforms
Strong understanding of adversary tradecraft
Translate TTPs into detection opportunities
Develop network and endpoint detections
Analyze telemetry across multiple sources
Proficiency in detection/query languages and programming