A World-Changing Company
At Palantir, we’re passionate about building software that solves problems. We partner with the most important institutions in the world to transform how they use data and technology. Our software has been used to stop terrorist attacks, discover new medicines, gain an edge in global financial markets, and more. If these types of projects excite you, we’d love for you to join us.
Our products support some of the most important and impactful work in the world, including defense, intelligence, and commercial applications. We are trusted by our customers to protect their information in the face of advanced persistent threats. The mission of the Counter-Abuse Technology (CAT) team is to make our software platforms more secure for customers by detecting and defeating fraud and abuse.
As an Information Security Engineer on CAT, you’re responsible for detecting, responding to, and defeating fraud and abuse on our hosted software platforms. You’ll own the tooling, telemetry, and processes to fight adversaries across the full account lifecycle, including account abuse or takeover primitives, billing and payment fraud, and unauthorized or illicit usage of our software (e.g. malware, spam, CSAM, unauthorized use cases, etc.)
The stakes are high, and you will be up against ever-evolving adversaries. The work is complex and dynamic, and you will have wide-reaching impact, strong autonomy, and the resources and empowerment to make our platforms safer for our customers.
Develop and implement tactics, techniques, and procedures for identifying and responding to anomalous, malicious, or abusive behavior on our hosted software platforms.
Develop detection strategies against observability sources (e.g., logging, telemetry, third-party signals) to generate alerts of potential fraud or abuse that necessitate further investigation.
Perform investigations into surfaced alerts and take response actions. This requires close collaboration with many teams including Legal, Incident Response, Product Engineering, Law Enforcement, and Payment Processors.
Develop long term plans and strategy for continually evolving the effectiveness of CAT. Own and advocate for substantive changes in products, platforms, and infrastructure.
Develop and deploy new capabilities, services, and telemetry sources to improve detection and response effectiveness.
Continuously monitor, and rapidly respond to changes in adversarial behavior, patterns, tools, and methodologies.
What We Value
4+ years professional security experience, preferably in roles focused on investigations, fraud or abuse, data analysis, or engineering.
Experience and familiarity with abuse-fighting platforms (e.g. Arkose Labs).
Deep familiarity with containers and orchestration tooling (Docker, Kubernetes).
Strong communication and collaboration skills and comfortable working closely with engineering teams.
Strong analytical and problem decomposition skills. You are data-driven, objective, and are skilled at using data to make decisions.
Curiosity and passion for risk identification and prevention. When something seems off, you want to investigate it and solve the root problem.
Experience with complex architectures and codebases (e.g. SOA or micro-services).
Experience and desire to work in a fast-paced, constantly evolving environment, with high autonomy and empowerment.
Active US Security clearance or eligibility and willingness to obtain a US Security clearance.
Life at Palantir
We want every Palantirian to achieve their best outcomes, that’s why we celebrate individuals’ strengths, skills, and interests, from your first interview to your longterm growth, rather than rely on traditional career ladders. Paying attention to the needs of our community enables us to optimize our opportunities to grow and helps ensure many pathways to success at Palantir. Promoting health and well-being across all areas of Palantirians’ lives is just one of the ways we’re investing in our community. Learn more at Life at Palantir
and note that our offerings may vary by region.
In keeping consistent with Palantir’s values and culture, we believe employees are “better together” and in-person work affords the opportunity for more creative outcomes. Therefore, we encourage employees to work from our offices to foster connectivity and innovation. Many teams do offer hybrid options (WFH a day or two a week), allowing our employees to strike the right trade-off for their personal productivity. Based on business need, there are a few roles that allow for “Remote” work on an exceptional basis. If you are applying for one of these roles, you must work from the state in which you are employed. If the positing is specified as Onsite, you are required to work from an office.
Palantir is committed to promoting a culture of diversity, equity, and inclusion and is proud to be an Equal Employment Opportunity and Affirmative Action employer. We believe that all Palantirians share the responsibility of upholding our commitment to these values and encourage candidates from a wide range of backgrounds, perspectives, and lived experiences to join us in solving the world’s hardest problems. Palantir does not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. Palantir is committed to working with and providing reasonable accommodations to qualified individuals with physical and mental disabilities. Please see the United States Department of Labor’s EEO poster, EEO poster supplement and Pay Transparency Notice for additional information.
Palantir is committed to making the job application process accessible to everyone. If you are living with a disability (visible or not visible) and need to request a reasonable accommodation for any part of the application or hiring process, please reach out and let us know how we can help.