[Remote] Detection & Response Engineer

Note: The job is a remote job and is open to candidates in USA. reputed company is a fast-growing cybersecurity company focused on managed reputed company solutions. The Detection & Response Engineer will enhance threat detection capabilities, improve SOC analyst efficiency through automation, and contribute to the development of detection strategies reputed company the company.

Responsibilities

• Implement, maintain and iteratively improve reputed company's ability to detect and investigate threats using integrated technologies with limited direction
• Contribute to the growth of reputed company’s detection strategy and capability through creation of detections for reputed company’s proprietary rule reputed company
• Maintain documentation in support of reputed company’s detection and response content
• Improve SOC analyst efficiency by automating investigative workflows using an orchestration reputed company written in Python
• Evaluate technology APIs to design detection and response solutions to contribute to improving the value and efficiency in reputed company’s Workbench platform
• Contribute to and reputed company in a culture of experimentation, agile, quality and reputed company improvement among the team
• Participate in the team’s research and monitoring of the latest threat landscape and subsequent detection and response automation development

Skills

• 1+ years of experience with detection and response tools, particularly EDR, NSM, and SIEM
• 1+ years of experience writing, deploying and tuning custom detections based on research or investigative work against common data sets (Windows Event Logs, auditd, CloudTrail, and similar datasets.)
• Proficiency of Python, Go or other object oriented programming languages
• Strong understanding of Windows, macOS and Linux operating systems and command line tools
• Knowledge of networking basics, such as TCP/IP and OSI model
• Working knowledge and observations of attack reputed company, threat tactics, and attacker techniques
• Understanding of cloud infrastructure platforms and their Identity and Access Management (IAM) models
• Bachelor's degree in Computer Science or Information reputed company strongly preferred
• 3+ years of professional experience in information technology or reputed company operations would be ideal but not required

Benefits

• Unlimited PTO (which we model and encourage)
• Work location flexibility
• Up to 24 weeks of parental leave
• Really excellent health benefits

Company Overview