Mission
Join Aily Labs as the founding Security Operations Lead and architect the next generation of security operations from first principles. You will design and build our Security & Governance Agentic Observability Platform—a state-of-the-art system that leverages AI agents to autonomously detect, investigate, and respond to threats while orchestrating holistic governance across our entire security ecosystem. This is not about traditional SIEM and SOC operations—this is about building an AI-native platform that eliminates L1/L2 toil, operates 24/7 autonomously, and redefines what security operations means in an AI-first.
Role
As the Security Operations Lead, you will architect and build Aily’s AI-native security operations capability. You will reimagine how security operations work in an AI-first company, moving beyond traditional human-driven models to autonomous, intelligent systems that operate continuously at scale. You will collaborate closely with Platform Security Engineers to build the foundation, then lead a dedicated team to operationalize and evolve the system.
We are looking for candidates with deep expertise in at least 2 of the areas below:
- Security Platform Architecture:
• Understand how to build large-scale security platforms that process and correlate data from across modern technology stacks
• Know how to design systems that ingest telemetry from diverse sources (cloud, applications, infrastructure, identity, endpoints) and make it queryable, actionable, and contextually rich
• Think in terms of relationships and context—understanding how security data connects to assets, identities, ownership, and business impact
• Have experience architecting observability platforms, data pipelines, or detection systems that operate at scale
• Can mentor engineers and build teams that understand platform thinking, not just tool configuration
- Detection Engineering & Threat Understanding:
• Expert at defining what matters in security, distinguishing signal from noise.
• Understand attacker tactics, techniques, and procedures deeply enough to design detection strategies that identify real threats, misconfigurations, policy violations, and anomalies across complex environments
• Know how to write detection logic, tune detection systems, and continuously improve true positive rates
• Understand our threat landscape and can translate risk into actionable detection and response strategies
• Think in terms of workflows, from initial detection through investigation to resolution, and can design effective response patterns that balance automation with human judgment.
- Security Operations & Automation:
• Understand modern security operations deeply, including incident response, alert triage, threat hunting, and remediation
• Believe much of traditional SOC work can and should be automated
• Know how to design intelligent automation that eliminates repetitive work while maintaining high-quality security outcomes
• Understand when to automate fully, when to keep humans in the loop, and how to design escalation patterns for complex decisions
• Can build systems that operate continuously and autonomously, integrating preventative
controls with reactive response capabilities
• Think holistically across the security domain, endpoint, cloud, vulnerability management, compliance, and governance
Role
As the Security Operations Lead, you will architect and build Aily’s AI-native security operations capability. You will reimagine how security operations work in an AI-first company, moving beyond traditional human-driven models to autonomous, intelligent systems that operate continuously at scale. You will collaborate closely with Platform Security Engineers to build the foundation, then lead a dedicated team to operationalize and evolve the system.
We are looking for candidates with deep expertise in at least 2 of the areas below:
- Security Platform Architecture:
• Understand how to build large-scale security platforms that process and correlate data from across modern technology stacks
• Know how to design systems that ingest telemetry from diverse sources (cloud, applications, infrastructure, identity, endpoints) and make it queryable, actionable, and contextually rich
• Think in terms of relationships and context—understanding how security data connects to assets, identities, ownership, and business impact
• Have experience architecting observability platforms, data pipelines, or detection systems that operate at scale
• Can mentor engineers and build teams that understand platform thinking, not just tool configuration
- Detection Engineering & Threat Understanding:
• Expert at defining what matters in security, distinguishing signal from noise.
• Understand attacker tactics, techniques, and procedures deeply enough to design detection strategies that identify real threats, misconfigurations, policy violations, and anomalies across complex environments
• Know how to write detection logic, tune detection systems, and continuously improve true positive rates
• Understand our threat landscape and can translate risk into actionable detection and response strategies
• Think in terms of workflows, from initial detection through investigation to resolution, and can design effective response patterns that balance automation with human judgment.
- Security Operations & Automation:
• Understand modern security operations deeply, including incident response, alert triage, threat hunting, and remediation
• Believe much of traditional SOC work can and should be automated
• Know how to design intelligent automation that eliminates repetitive work while maintaining high-quality security outcomes
• Understand when to automate fully, when to keep humans in the loop, and how to design escalation patterns for complex decisions
• Can build systems that operate continuously and autonomously, integrating preventative
controls with reactive response capabilities
• Think holistically across the security domain, endpoint, cloud, vulnerability management, compliance, and governance