Job Description :

100% Remote Detection Engineer

Contract (6 12 months)

Must Have Skills:

  • Hands-on experience in configuring and setting up detection systems
  • Policy and logic engineering to support detection and response use cases
  • Broad detection engineering experience across SIEM, EDR, ITDR, and email security tools.
  • Practical knowledge with tools like CrowdStrike, Wiz, Proofpoint, Tenable, and ServiceNow.

Updated JD-

  • Detection engineering and architecture experience, with the ability to design the logging, monitoring, alerting, rules, and tuning of tools.
    • Note: writeup and resume should explain how they not just operate the tools, but they have expertise in architecting detection and monitoring systems from the ground up.
  • In-depth Detection Logic Development & Tuning experience
    • Note: writeup and resume should their proficiency in Writing and deploying advanced detection rules in SIEM and EDR (e.g., SPL, KQL, Sigma, YARA).
  • Advanced understanding of threat actor TTPs (MITRE ATT&CK, cyber kill chain)
  • Ability to influence and develop the SOC/detection strategy
    • Note: resume and writeup should prove they have experience being strategic, collaborating with stakeholders to align detection efforts with business risks, and advocating for improvements to processes and technology.
  • Experience automating log ingestion, data enrichment, and alert triage
    • Note: in order to do so, they should have Familiarity with scripting (Python, PowerShell) to support automation

 

             

Similar Jobs you may be interested in ..