Job Description:
We are seeking an experienced Detection Engineer to design, develop, and maintain advanced threat detection systems that strengthen organizational security posture. The role involves crafting detection logic, integrating telemetry from multiple sources, and implementing “detection-as-code” principles to enhance threat identification and response capabilities.
Roles & Responsibilities:
1.
Design, build, and maintain detection systems, including writing and optimizing detection rules.
2.
Analyze security logs, research emerging threats, and refine detection logic for improved accuracy.
3.
Integrate telemetry from various data sources and map detections to frameworks such as MITRE ATT&CK.
4.
Develop and enhance detection rules, logic, and models for SIEM, EDR, and cloud-native platforms.
5.
Investigate alerts, analyze logs, and process raw data to identify potential malicious activities while minimizing false positives.
6.
Implement detection-as-code practices using version control and CI/CD pipelines for automated testing and deployment.
7.
Collaborate with threat hunting, security operations, and engineering teams to strengthen overall detection coverage.
8.
Maintain a centralized library of detection rules and playbooks to promote consistency and operational efficiency.
Required Skills & Qualifications:
6+ years of experience in Cybersecurity, Threat Detection, or Security Engineering.
Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, Azure Sentinel) and EDR solutions.
Familiarity with MITRE ATT&CK framework and detection engineering best practices.
Strong proficiency in scripting languages (Python, PowerShell, or similar) for automation.
Experience with CI/CD pipelines, version control (Git), and detection-as-code principles.
Excellent analytical, troubleshooting, and problem-solving skills.
Strong written and verbal communication skills, with the ability to collaborate across teams.
We are an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, national origin, citizenship/ immigration status, veteran status, or any other status protected under federal, state, or local law.