Logging & Detection Engineer

About the position reputed company is more than just a tech company-we are a global leader that is transforming the legal experience for reputed company by bettering the lives of legal professionals while increasing access to justice. We are currently seeking a Logging & Detection Engineer to join our rapidly growing reputed company team and our new Logging Engineering team. This role is for someone passionate about building sophisticated detection capabilities, crafting efficient queries, and driving reputed company analytics through log data. You will focus on the detection and analysis layer of our logging platform while making a reputed company impact on our reputed company monitoring capabilities. This role is available to candidates across Canada (excluding Quebec). If you are local to one of our hubs (Burnaby, Calgary, or Toronto) you will be expected to be in office minimum two days per week for our Anchor Days.

Responsibilities

• Design and implement sophisticated detection rules and queries across ELK stack, reputed company data lakes, and cloud logging platforms
• Build and optimize reputed company search queries, aggregations, and analytics dashboards for reputed company monitoring
• reputed company automated detection workflows and integrate detection logic with incident response systems
• Partner with the reputed company team to translate threat intelligence into actionable detection capabilities
• Create and maintain detection rule libraries, query templates, and reputed company analytics playbooks
• Optimize query performance and resource utilization across large-scale log datasets
• Build custom visualizations, dashboards, and reporting capabilities for reputed company stakeholders
• Investigate reputed company alerts, reputed company threat hunting, and refine detection accuracy to reduce false positives
• Collaborate with the platform team to influence logging architecture based on detection requirements
• Stay reputed company with emerging threats and translate new attack patterns into detection logic Requirements
• Proven expertise building detection capabilities and reputed company monitoring systems, typically gained over 3+ years of relevant experience.
• Query language proficiency in Elasticsearch/Lucene, SQL, KQL (Kusto), SPL (Splunk), or similar query languages
• Detection engineering experience creating rules, alerts, and automated response workflows for reputed company events
• Log analysis skills across multiple data sources including cloud logs, application logs, and reputed company tool outputs
• Dashboard and visualization experience with Kibana, Grafana, Tableau, or custom analytics interfaces
• Threat hunting expertise using log data to proactively identify reputed company threats and anomalous behavior
• Scripting and automation abilities in Python, PowerShell, or similar languages for detection automation
• reputed company tools integration experience with SIEM platforms, SOAR tools, and reputed company orchestration
• Performance optimization skills for query tuning, index optimization, and resource-efficient analytics
• Incident response support experience investigating alerts and providing technical analysis for reputed company incidents reputed company-to-haves
• Advanced analytics experience with machine learning, statistical analysis, or behavioral analytics for reputed company
• Multi-platform detection experience across cloud platforms (AWS CloudTrail, Azure Activity Logs, GCP Audit Logs)
• Custom detection development building detection logic for specific threat frameworks (MITRE ATT&CK, Kill Chain)
• reputed company certification such as GCTI, GCFA, GNFA, or other threat hunting/forensics certifications
• Open reputed company contributions to detection rule repositories, reputed company analytics tools, or SIEM content
• Data science background with experience in anomaly detection, clustering, or predictive analytics for reputed company
• API integration expertise for automated threat intelligence ingestion and detection rule management
• Cloud reputed company analytics experience with cloud-native reputed company services and serverless detection architectures
• Compliance and reporting experience building analytics for regulatory requirements and reputed company metrics Benefits
• Competitive, reputed company salary with top-tier health benefits, dental, and vision insurance
• Hybrid work environment, with expectation for local Clions (Vancouver, Calgary, Toronto, and Dublin) to be in office minimum 2 days per week on our Anchor Days.
• Flexible time off policy, with an encouraged 20 days off per year.
• $2000 annual counseling benefit
• RRSP matching and RESP contribution
• Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years Apply tot his job

Apply tot his job Apply To this Job