Can I apply directly for this job on this page?

Yes, you can begin your application on this page using a quick form. You'll then be redirected to the employer's career site to complete the full application process.

What is the role of a Threat Detection Engineer at Function Health?

The Threat Detection Engineer position at Function Health is a Full-Time opportunity in the relevant field.

What industry does this Threat Detection Engineer position belong to?

This role spans multiple industries.

What is the expected salary for this Threat Detection Engineer job?

Compensation will be discussed during the hiring process.

Threat Detection Engineer job near me in Austin, Texas at Function Health

About Us:

Function was founded with a singular focus: empower you to live 100 healthy years. We’re doing that by using the best available technology to make sure people don't suffer or die a preventable death. Function has been recognized as one of Fast Company’s Most Innovative Companies of 2024, and is venture-backed by Andreessen Horowitz (a16z). Hundreds of thousands of members have joined Function to take control of their health. We are growing our team and seeking out world-class talent that deeply believes in our mission to positively impact global health, has a relentless bias toward action and a growth mindset. Function fosters a collaborative and dynamic environment, where every day we are building the future.

Role:

Function Health is building a security program that moves as fast as the business and protects one of the most complete longitudinal health datasets in the world. As a Threat Detection Engineer, you’ll design, build, and tune the systems that keep us ahead of attackers — from cloud-native telemetry pipelines to automated response logic.

You’ll work across security, infrastructure, and product teams to make detection and response a core part of how we build and operate. This is a hands-on, high-impact role for someone who understands both how attacks happen and how to detect them without drowning in noise.

Key Responsibilities:

Design and implement detection logic for cloud, identity, and endpoint environments.
Build telemetry pipelines and normalization layers using native GCP logging, BigQuery, and security tools.
Develop and maintain correlation and enrichment logic to identify real attacker behavior, not false positives.
Partner with engineering to integrate detection into CI/CD and infrastructure automation.
Contribute to incident response workflows and post-incident reviews.
Continuously tune detections based on threat intelligence, red-team findings, and production learnings.
Build dashboards and metrics that make detection effectiveness measurable.
Automate response actions where appropriate, balancing risk and speed.

Qualifications/Skills:

4–7 years of experience in security engineering, detection, or incident response.
Strong understanding of modern attack techniques (cloud exploitation, identity attacks, persistence, data exfiltration).
Experience building or tuning detections in SIEMs, CSPMs, or data pipelines (BigQuery, Chronicle, Elastic, etc.).
Solid understanding of GCP logging, audit logs, and service telemetry.
Familiarity with Python or Go for automation and detection logic.
Understanding of EDR tooling and endpoint visibility.
Experience partnering with engineering teams to build detections that scale and last.
Bonus: experience with AI/ML-assisted detection, purple teaming, or healthcare threat models (HIPAA context).

To be a strong fit, you also need:

Bias Toward Action: Demonstrated ability to take initiative, make decisions under uncertainty, and move projects forward even in the face of ambiguity. We value individuals who are self-starters and ready to act on opportunities and challenges alike.
Entrepreneurial Spirit: Strong adaptability to changing business needs with a knack for building and optimizing processes. Your entrepreneurial mindset will be crucial in navigating the dynamic landscape of our industry, ensuring our platform remains competitive and responsive to user needs.
Communication: Excellent communication skills, capable of explaining complex technical concepts to non-technical stakeholders. Effective communication is vital for cross-functional collaboration and ensuring alignment across our organization.
Remote Work Adaptability: Comfort with remote work environments, demonstrating the ability to stay productive and connected with the team irrespective of physical location.
Continuous Improvement: A willingness to question assumptions and a commitment to continuous improvement. Your openness to feedback and dedication to personal and professional growth will contribute significantly to our collective success.

We value our team at Function and offer a competitive salary and benefits package, flexible working hours, and a dynamic work environment where creativity and innovation are encouraged. If you are a highly motivated and experienced individual who is passionate about using technology to improve people’s lives, we would love to hear from you.

Join the Function Health team and become a part of our mission to revolutionize healthcare. Work with us to make a difference in the lives of thousands, ensuring a healthier future for all. Discover more about us and how we're changing the face of healthcare at Function Health.

Threat Detection Engineer in Austin, Texas at Function Health

Explore Related Opportunities

Job Description

Scan to Apply

Job Location

Frequently asked questions about this position

Similar Jobs In Austin, Texas

Medical Scribe

Information Systems Security Officer (ISSO)

Systems Business Analyst / Full time (Remote)

Senior Oracle Fusion Techno-Functional Analyst (OIC / ERP / RICEW)

Medical Scribe