Staff Detection Engineer

Airwallex is the only unified payments and financial platform for global businesses. Powered by our unique combination of proprietary infrastructure and software, we empower over 150,000 businesses worldwide – including Brex, Rippling, Navan, Qantas, SHEIN and many more – with fully integrated solutions to manage everything from business accounts, payments, spend management and treasury, to embedded finance at a global scale.

Proudly founded in Melbourne, we have a team of over 1,700 of the brightest and most innovative people in tech across 26 offices around the globe. Valued at US$6.2 billion and backed by world-leading investors including Visa, Airtree, Blackbird, Sequoia, DST Global, Greenoaks, Salesforce Ventures, Lone Pine, and Square Peg, Airwallex is leading the charge in building the global payments and financial platform of the future. If you’re ready to do the most ambitious work of your career, join us.

About the team

The Airwallex Information Security Team is a high calibre and highly proactive team that works across our infrastructure, applications, corporate IT and broader engineering functions.

What you’ll do

As a Staff Detection Engineer focused on insider and fraud threats within the Information Security Engineering team, you will be pivotal in protecting Airwallex’s $200b+ payments ecosystem, our customers, and our global workforce. Your mandate centers on identifying, investigating, and challenging threats from both internal and external actors. You will be challenged to:

• Design, develop, and maintain advanced detection rules and automated response mechanisms to surface insider and fraud risk, using a mix of behavioral analytics, anomaly detection, and rule-based logic.

• Deep-dive into user, system, and financial data to uncover complex fraud tactics and potential abuse by insiders or privileged users.

• Contribute insight into evolving fraud trends and trusted insider behaviors, strengthening Airwallex’s proactive security stance through continuous learning and agile solutioning.

• Mentor peers on advanced detection strategies, fraud taxonomy development, and the broader fraud/insider threat lifecycle, fostering technical depth on the team.

Responsibilities

• Lead the creation and tuning of high-efficacy detection signatures and analytics across SIEM, EDR, DLP, and payment monitoring platforms, focusing on both technical threats and nuanced abuse scenarios.

• Support relevant incident response and digital forensics efforts.

• Identify and mitigate the risk of issues such as account misuse, privilege escalation, and social engineering within the organization.

• Collaborate with fraud analysts, KYC operations, compliance, and the broader security team to improve high-risk workflows (onboarding, KYC,authentication, funds movement).

• Create, maintain, and operationalize detection logic for insider and fraud scenarios.

• Share domain best practices in threat modeling and detection with the engineering team, actively supporting others’ development in fraud and insider risk domains.

Who you are

You have a proven passion for detecting and responding to sophisticated fraud and insider threats in a Fintech or technology-driven environment. You are outcome-driven, relentless in your pursuit of root causes, and thrive when blending technical acumen with creative threat modeling. You are:

• Intellectually curious, especially about insider threat frameworks, fraud prevention, psychology of trust abuse, and organizational risk.

• Adept at navigating ambiguity, seeking out new data sources, and synthesizing signals across disparate platforms and logs.

• Proactive in identifying abuse patterns, hypothesizing how attackers (internal and external) might operate within a complex ecosystem, and testing theories through technical proof.

• Articulate when presenting complex scenarios to stakeholders, and skilled at collaborating across business, security, compliance, and engineering functions.

Minimum Qualifications

• Bachelor’s degree in Computer Science, Information Security, or relevant field.

• 7+ years of hands-on experience in security engineering or detection engineering, with a strong focus on insider threat or fraud risk (ideally in financial or high-growth technology settings).

• Direct experience building, tuning, and operating detection and monitoring solutions (e.g. SIEM, EDR, DLP, user behavior analytics, and fraud detection platforms).

• Expertise designing and implementing DLP controls and correlating exfiltration techniques with insider scenarios.

• Working knowledge of modern cloud-native architectures and how they impact identity, access, and monitoring.

• Experience with coordinating incident response and digital forensics.

Preferred Qualifications

• Experience within Fintech, payment, or regulated environments handling substantial fraud or insider risk volumes.

• Strong background in digital forensics, transaction analysis, and linking forensic evidence to potential business impact.

Understanding of regulatory requirements, compliance best practices, and incident disclosure obligations for financial institutions.

Airwallex is proud to be an equal opportunity employer. We value diversity and anyone seeking employment at Airwallex is considered based on merit, qualifications, competence and talent. We don’t regard color, religion, race, national origin, sexual orientation, ancestry, citizenship, sex, marital or family status, disability, gender, or any other legally protected status when making our hiring decisions. If you have a disability or special need that requires accommodation, please let us know.

Airwallex does not accept unsolicited resumes from search firms/recruiters.  Airwallex will not pay any fees to search firms/recruiters if a candidate is submitted by a search firm/recruiter unless an agreement has been entered into with respect to specific open position(s).  Search firms/recruiters submitting resumes to Airwallex on an unsolicited basis shall be deemed to accept this condition, regardless of any other provision to the contrary.