Your team serves as a critical line of defense, responsible for the 24/7 prevention, detection, and investigation of security events and active threats across Palantir's environment. This role focuses on all aspects of Detection and Response with a strong emphasis on identifying and mitigating insider risks. Your work will directly impact the success of Palantir's mission by making it difficult for adversaries — both external and internal — to compromise our global network.
Core Responsibilities
- Engineer and automate end-to-end detection and investigation workflows, continuously improving Detection and Response infrastructure
- Develop alerting and detection strategies to identify malicious or anomalous behavior, including new and novel defensive techniques that adapt to evolving adversary tactics and tradecraft
- Dissect network, host, memory, and other artifacts originating from multiple operating systems and applications.
- Investigate security events and active attacks across the enterprise, uncovering sophisticated threats and identifying patterns of behavior that indicate insider risk
- Influence and inform security controls designed to safeguard Palantir's most critical assets
- Partner closely with other members of the Information Security team to lead changes in the company's network defense posture.
What We Value
- Broad exposure to multiple security subject areas, including a strong background in forensics or threat intelligence
- Deep exposure in Incident Response or Detection Engineering
- Desire to further the information security community through substantive contributions (e.g. conference talks, blog posts, public tool development, etc.)
- Comfort in operating autonomously and engaging across business levels to advise on security outcomes.
What We Require
- Extensive security experience (3+ years) in at least one major platform (e.g. AWS, Azure, Windows, OS X, Linux, etc.)
- Proficiency in Python (preferred), PowerShell, or similar
- Familiarity with endpoint telemetry and log sources from at least one major operating system
- Experience with common SIEM/SOAR platforms and proficiency writing queries against security event data
- Active TS/SCI security clearance or eligibility to obtain a security clearance.
If you would like to understand more about how your personal data will be processed by Palantir, please see our Privacy Policy.
Skills Required
- Extensive security experience (3+ years) in at least one major platform
- Proficiency in Python (preferred), PowerShell, or similar
- Familiarity with endpoint telemetry and log sources from major OS
- Experience with common SIEM/SOAR platforms and proficiency writing queries against security event data
- Active TS/SCI security clearance or eligibility
Palantir Technologies Compensation & Benefits Highlights
-
Healthcare Strength — Healthcare benefits for employees and dependents are positioned as exceeding industry average, with feedback suggesting very low or no employee premiums and solid plan options. Mental‑health resources like virtual therapy, coaching, and wellness offerings further strengthen the package.
-
Parental & Family Support — Paid parental leave, a new‑parent stipend, family‑care leave, and fertility/adoption support are prominently highlighted. UK materials also reference gender‑affirming healthcare and fertility support, indicating breadth in family‑oriented offerings.
-
Leave & Time Off Breadth — A “take‑what‑you‑need” PTO approach is complemented by a two‑week December office closure. Together these provide notable flexibility and additional downtime built into the year.
Palantir Technologies Insights
What We Do
At Palantir, we're helping the world's most important institutions use their data to solve their most urgent problems. Palantir software helps the world's most important institutions integrate, analyze, and act on their data — unlocking answers to questions they couldn't ask before. From delivering disaster relief to building safer automobiles, we're honored to help make our partners better at their most important work. Together with our customers, we're building the future of national security, healthcare, energy, finance, manufacturing, and more.
Why Work With Us
We build the software that powers the world's most important institutions — the hospitals, militaries, intelligence agencies, and industrial operators that can't afford to fail. The consequence of our work is what makes us different.
Palantir Technologies Offices
OnSite Workspace