Staff Security Operations Engineer

Are you a seasoned SecOps engineer who loves digging into logs, tuning detections, and staying one step ahead of attackers? Have you ever written a Python script just to shave a few seconds off your IR workflow? Maybe threat-hunted in your home lab on a Saturday morning for fun? If so, we want to talk to you! As a senior member of Apollo’s Security Operations team, you’ll bring deep technical expertise and a collaborative mindset to help us protect and scale our infrastructure securely. This is a high-impact opportunity to shape how SecOps evolves - from detection engineering and incident response, to compliance, automation, and AI security. You’ll work directly with teams across Apollo to reduce risk, meet customer expectations, and ensure that security operations remain a foundation of trust as we scale. What you’ll doAdvance Apollo’s detection and response strategy in partnership with engineering and IT leadershipImplement and maintain adherence to SOC 2 and other cloud security frameworksHandle escalations from Sales and Customer Success, including security questionnaires and customer auditsBuild and tune monitoring, logging, and alerting systems to improve visibility while reducing noiseDrive automation of SecOps workflows to speed up investigation and responseGuide secure adoption of AI across Apollo - from internal use by engineers to AI-powered product featuresParticipate in our on-call rotation (we keep this lightweight and reasonable)Who you areA highly experienced SecOps engineer with a strong background in detection, response, and operational securitySkilled at building and operating modern cloud security controls across AWS, GCP, or similar environmentsComfortable working directly with engineers to embed operational security practices into their workflowsStrong communicator who can explain threats and mitigations clearly to both technical and non-technical audiencesExcited about the intersection of AI and security, with ideas for how to safely harness AI while managing its risksMotivated by outcomes - not just solving incidents, but building resilient systems and reducing risk at scaleMinimum requirements6+ years of experience in security operations, incident response, or related fields, including at least 2 years in a staff or senior-level roleDeep expertise with detection and response in cloud-native environmentsStrong knowledge of SOC 2, ISO 27001, or similar security frameworksExperience building and automating security tooling (SIEM, SOAR, custom scripts)Proven ability to lead or coordinate incident response across multiple teamsTrack record of influencing operational security culture and practices without direct authorityNice-to-HavesExperience working with AI security - either in detection, incident response, or product security contextsPrior experience supporting enterprise customer audits or due diligence processesFamiliarity with Terraform, Kubernetes, or other modern infrastructure stacksHands-on experience with threat hunting and detection engineeringAbout ApolloApollo is the worldwide leader of GraphQL innovation. Companies like Netflix, Expedia, Peloton, DoorDash, The New York Times, and PayPal are just a small sample of Apollo's customers. Our open-source product has millions of downloads every week. Gartner estimates that by 2025, 50% of companies will be using GraphQL, and we're the clear market leader. Equal to all of that, Apollo is intent on becoming the company where you can see your career grow through challenging work, collaborating with incredible teammates, and accomplishing the unattainable. Apply to this Job