Staff Security Operations Engineer

Are you a seasoned SecOps engineer who loves digging into logs, tuning detections, and staying one step ahead of attackers? Have you ever written a Python script just to shave a few seconds off your IR workflow? Maybe threat-hunted in your home lab on a Saturday morning for fun? If so, we want to talk to you!

As a senior member of Apollo’s Security Operations team, you’ll bring deep technical expertise and a collaborative mindset to help us protect and scale our infrastructure securely. This is a high-impact opportunity to shape how SecOps evolves - from detection engineering and incident response, to compliance, automation, and AI security. You’ll work directly with teams across Apollo to reduce risk, meet customer expectations, and ensure that security operations remain a foundation of trust as we scale.

What you’ll do

• Advance Apollo’s detection and response strategy in partnership with engineering and IT leadership

• Implement and maintain adherence to SOC 2 and other cloud security frameworks

• Handle escalations from Sales and Customer Success, including security questionnaires and customer audits

• Build and tune monitoring, logging, and alerting systems to improve visibility while reducing noise

• Drive automation of SecOps workflows to speed up investigation and response

• Guide secure adoption of AI across Apollo - from internal use by engineers to AI-powered product features

• Participate in our on-call rotation (we keep this lightweight and reasonable)

Who you are

• A highly experienced SecOps engineer with a strong background in detection, response, and operational security

• Skilled at building and operating modern cloud security controls across AWS, GCP, or similar environments

• Comfortable working directly with engineers to embed operational security practices into their workflows

• Strong communicator who can explain threats and mitigations clearly to both technical and non-technical audiences

• Excited about the intersection of AI and security, with ideas for how to safely harness AI while managing its risks

• Motivated by outcomes - not just solving incidents, but building resilient systems and reducing risk at scale

Minimum requirements

• 6+ years of experience in security operations, incident response, or related fields, including at least 2 years in a staff or senior-level role

• Deep expertise with detection and response in cloud-native environments

• Strong knowledge of SOC 2, ISO 27001, or similar security frameworks

• Experience building and automating security tooling (SIEM, SOAR, custom scripts)

• Proven ability to lead or coordinate incident response across multiple teams

• Track record of influencing operational security culture and practices without direct authority

Nice-to-Haves

• Experience working with AI security - either in detection, incident response, or product security contexts

• Prior experience supporting enterprise customer audits or due diligence processes

• Familiarity with Terraform, Kubernetes, or other modern infrastructure stacks

• Hands-on experience with threat hunting and detection engineering

About Apollo

Apollo is the worldwide leader of GraphQL innovation. Companies like Netflix, Expedia, Peloton, DoorDash, The New York Times, and PayPal are just a small sample of Apollo's customers. Our open-source product has millions of downloads every week. Gartner estimates that by 2025, 50% of companies will be using GraphQL, and we're the clear market leader.

Equal to all of that, Apollo is intent on becoming the company where you can see your career grow through challenging work, collaborating with incredible teammates, and accomplishing the unattainable.