Senior Security Engineer - Threat Intelligence & Detection Engineering (Hybrid - Seattle)

Nordstrom

Hybrid

Quick summary

Work type: Hybrid
Location: Seattle, WA
Salary: $142,000–$220,500 / yr
Posted: 1 day ago

Market check

Salary context

Competitive pay

How this pay compares to similar roles

Similar $177k

This role $181k

$127k most similar roles pay here $231k

This role pays more than 52% of similar roles. Most pay $146,675–$206,900 — the shaded band above. At the midpoint, this role pays about $181k versus about $177k for comparable roles.

Based on 240 similar postings.

Employer

About Nordstrom

Nordstrom is a leading American luxury department store chain offering a wide selection of clothing, shoes, accessories, and beauty products through its stores, Nordstrom Rack outlets, and online. Industry: Luxury Department Store Retail

Nordstrom currently has 30 open roles on FindRole.

Listed pay typically runs $142,000–$220,500 across 30 roles with salary data.

Most-posted roles

View all roles at Nordstrom

At a glance

TL;DR · Senior Security Engineer - Threat Intelligence & Detection Engineering (Hybrid - Seattle)

Apply Now Log in to save

The Senior Security Engineer on the TIDE team is a versatile role requiring expertise in detection engineering, threat intelligence, and threat hunting. This senior-level position involves designing high-fidelity detection rules using CrowdStrike NG-SIEM (LogScale/CQL) across various domains, operationalizing threat intelligence to inform detection priorities, and executing hypothesis-driven threat hunts to uncover undetected adversary activity. The role also includes developing automation scripts in Python or PowerShell to streamline workflows and collaborating with cross-functional teams to enhance security coverage. Candidates should have 4+ years of experience in related fields, proficiency in MITRE ATT&CK, and hands-on skills in EDR analysis and incident response for complex threats.

Skills

CrowdStrike MITRE ATT&CK Python PowerShell SIEM EDR LogScale/CQL MISP ThreatConnect Recorded Future STIX/TAXII Git CI/CD Azure AWS SOAR Docker

What you'll do

Design and maintain high-fidelity detection rules in CrowdStrike NG-SIEM across multiple domains.
Operationalize the full detection lifecycle from threat modeling to retirement.
Build actionable intelligence products that inform detection priorities and hunting hypotheses.
Conduct hypothesis-driven threat hunts to surface undetected adversary activity.
Develop automation to accelerate detection deployment, alert triage, and case enrichment.

What we're looking for

4+ years of experience in detection engineering, threat intelligence, SOC/IR, threat hunting, or security automation
Proficiency in writing detection logic for enterprise SIEM platforms; CrowdStrike NG-SIEM (LogScale/CQL) preferred
Working knowledge of MITRE ATT&CK framework at the technique and sub-technique level
Hands-on experience with EDR analysis, behavioral anomaly detection, and post-exploitation investigation
Scripting proficiency in Python or PowerShell for automation and investigative tooling
Experience contributing to incident response for malware incidents, identity-based attacks, or insider threats
Strong written communication skills; ability to produce clear documentation and intelligence products

Similar roles

Senior Security Engineer

The Hartford

Hartford, CT 3 days ago $128,400–$192,600

AWS AI/ML CI/CD Kubernetes Docker GitHub Copilot Splunk Dynatrace Akamai Angular React Vue.js Node.js NestJS Helmet Jose express-validator SQL NoSQL REST GraphQL Terraform GCP Vertex AI BigQuery Prometheus Grafana

Hybrid

Save

Senior Security Engineer, Cyber Defense Platforms

State Street

Boston, MA 3 days ago $90,000–$157,500

Endpoint hardening CIS benchmarks Zero Trust EDR Application control Configuration management Execution control mechanisms Network Security (NetSec) Data Security (DataSec) CI/CD Security architecture documentation Large scale multi-region environments Regulated enterprise environments Hybrid work model

Hybrid

Save

Senior Security Engineer, Corporate Security

Lyft

Seattle, WA 36 days ago $136,160–$170,200

Python Go AWS Kubernetes DynamoDB Redis Elasticsearch TCP/IP HTTP TLS DNS Okta Google Workspace

Hybrid

Save

Senior Principal Engineer - Cybersecurity (Hybrid - Seattle)

Nordstrom

Seattle, WA 10 days ago $200,500–$332,000

AWS Azure GCP Kubernetes Terraform Python Go Java DevSecOps SABSA O-ESA TOGAF SIEM SOAR XDR Zero Trust architecture AI/ML security Infrastructure as Code Container orchestration security

Hybrid

Save

Senior Threat Response Engineer, Security Operations

DoorDash, Inc

Remote (US) 3 days ago $159,800–$235,000

SIEM SOAR MITRE Att&ck NIST Python Linux MacOS AI LLM Incident Response Threat Hunting Cross-functional Collaboration Scripting Computer Forensics Communication Skills On-call Rotation Follow-the-Sun Model

Remote

Save

Senior Security Engineer

Green Dot Corp

Los Angeles, CA 5 days ago $113,400–$162,000

Azure CI/CD NIST CIS Benchmarks OWASP Azure Firewall Network Security Groups Azure Security Center Key Vault DevSecOps SSDLC Python PostgreSQL Kubernetes Terraform AWS Git Jira Prometheus Grafana

Hybrid

Save