Senior Threat Detection & Emulation Engineer

If you’re interested in this role, please apply in English and include an English version of your CV.

The Role: 

Joining Moderna offers the unique opportunity to be part of a pioneering team that's revolutionizing medicine through mRNA technology, with a diverse pipeline of development programs across various diseases.

As an employee, you'll be part of a continually growing organization, working alongside exceptional colleagues and strategic partners worldwide, contributing to global health initiatives.

Moderna's commitment to advancing the technological frontier of mRNA medicines ensures a challenging and rewarding career experience, with the potential to make a significant impact on patients' lives worldwide.

Moderna is solidifying its presence within our international business services hub in Warsaw, Poland, a city renowned for its rich scientific and technological heritage. This hub provides critical functions, meeting the growing demand of Moderna’s global business operations. We're inviting professionals from around the world to join our mission and contribute to the future of mRNA medicines.

As a Senior Threat Detection & Emulation Engineer, you’ll play a critical role in advancing Moderna’s global security operations by enhancing detection logic, executing adversary emulation, and elevating our defense capabilities across hybrid environments. You will bring advanced detection engineering, incident response, and automation skills to operationalize threat intelligence, simulate adversary behavior, and improve signal-to-noise ratios. Your work will enable rapid containment of emerging threats and drive forward Moderna’s digital defense posture in the biotech and life sciences sectors.

This is a highly technical, hands-on role that operates at the intersection of blue team analytics and red team validation. You will collaborate closely with security operations, intelligence, IT engineering, and red team units, using your expertise to contribute directly to Moderna’s global cyber resilience.

Here’s What You’ll Do:

Your key responsibilities will be:

• Developing, implementing, and continuously refining high-fidelity detections in Splunk Enterprise Security (ES), CrowdStrike Falcon, and Microsoft Defender.

• Aligning detection logic to MITRE ATT&CK and real-world adversary TTPs to ensure broad and deep coverage.

• Executing adversary emulation using frameworks such as Atomic Red Team, custom-built simulations, and other red team tooling.

• Tuning detection pipelines to reduce false positives, while enhancing visibility and enrichment using contextual threat intelligence.

• Building and maintaining enrichment pipelines and automating correlation and triage through detection-as-code methodologies.

• Documenting detection gaps and coordinating with engineering teams to remediate coverage limitations.

• Establishing and measuring detection efficacy KPIs and response performance through custom reporting and dashboards.

• Developing and maintaining detection documentation, runbooks, and automated validation tests.

• Driving SOAR integrations to streamline containment and remediation workflows.

Your responsibilities will also include:

• Leading and supporting incident investigations through root cause analysis and collaboration with infrastructure and cloud teams.

• Driving purple-team operations and enabling detection validation through controlled emulation exercises.

• Partnering with red teams and IT engineers to operationalize IOCs, TTPs, and threat intelligence into actionable detections.

• Monitoring emerging threats specific to the biotech/life sciences industries and ensuring proactive detection coverage.

• Supporting continuous improvement and maturity of Moderna’s detection and response posture across global operations.

The key Moderna Mindsets you’ll need to succeed in the role:

• “We digitize everywhere possible using the power of code to maximize our impact on patients.
  This role lives at the frontier of automation, detection-as-code, and security engineering. Success here means building scalable, code-driven detection logic and enrichment pipelines that enable speed, accuracy, and global impact.

• “We obsess over learning. We don’t have to be the smartest; we have to learn the fastest.”
  Threat landscapes evolve rapidly — your ability to continuously simulate adversaries, iterate on detections, and learn from incident patterns will be vital to Moderna’s ability to anticipate and neutralize cyber threats globally.

Here’s What You’ll Bring to the Table (Basic Qualifications):

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related discipline.

• 6+ years of experience in cybersecurity, software engineering, and/or IT  with subject matter expertise in areas such as threat detection, detections engineering, response, or threat hunting.

• Strong hands-on expertise in Splunk Enterprise Security (ES) and CrowdStrike Falcon.

• Proficiency in scripting languages such as Python, Bash, or PowerShell for automation and enrichment.

• Understanding of cloud security architectures (AWS, Azure, GCP) and modern detection telemetry.

• Familiarity with MITRE ATT&CK, NIST, and CIS frameworks for threat mapping and control alignment.

• Proficiency in English (verbal and/or written) required due to global collaboration needs.

Pay & Benefits

At Moderna, we believe that when you feel your best, you can do your best work.  That’s why our global benefits and well-being resources are designed to support you—at work, at home, and everywhere in between.

• Best-in-class healthcare, plus voluntary benefit programs to support your unique needs

• A holistic approach to well-being with access to fitness, mindfulness, and mental health support

• Family building benefits, including fertility, adoption, and surrogacy support

• Generous paid time off, including vacation, bank holidays, volunteer days, sabbatical, global recharge days, and a discretionary year-end shutdown

• Savings and investments to help you plan for the future

• Location-specific perks and extras

The benefits offered may vary depending on the nature of your employment with Moderna and the country where you work.

About Moderna

Since our founding in 2010, we have aspired to build the leading mRNA technology platform, the infrastructure to reimagine how medicines are created and delivered, and a world-class team. We believe in giving our people a platform to change medicine and an opportunity to change the world.  

By living our mission, values, and mindsets every day, our people are the driving force behind our scientific progress and our culture. Together, we are creating a culture of belonging and building an organization that cares deeply for our patients, our employees, the environment, and our communities. 

We are proud to have been recognized as a Science Magazine Top Biopharma Employer, a Fast Company Best Workplace for Innovators, and a Great Place to Work in the U.S. 

As we build our company, we have always believed an in-person culture is critical to our success. Moderna champions the significant benefits of in-office collaboration by embracing a 70/30 work model. This 70% in-office structure helps to foster a culture rich in innovation, teamwork, and direct mentorship. Join us in shaping a world where every interaction is an opportunity to learn, contribute, and make a meaningful impact. 

If you want to make a difference and join a team that is changing the future of medicine, we invite you to visit modernatx.com/careers to learn more about our current opportunities. 

Moderna is a smoke-free, alcohol-free, and drug-free work environment. 

Moderna is a place where everyone can grow. If you meet the Basic Qualifications for the role and you would be excited to contribute to our mission every day, please apply! 

Moderna is committed to equal opportunity in employment and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry or citizenship, ethnicity, disability, military or protected veteran status, genetic information, sexual orientation, marital or familial status, or any other personal characteristic protected under applicable law. We consider qualified applicants regardless of criminal histories, consistent with legal requirements. 

We’re focused on attracting, retaining, developing, and advancing our employees. By cultivating a workplace that values diverse experiences, backgrounds, and ideas, we create an environment where every employee can contribute their best. 

Moderna is committed to offering reasonable accommodation or adjustments to qualified job applicants with disabilities. Any applicant requiring an accommodation or adjustment in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should contact the Accommodations and Adjustments team at [email protected]. 

-