Detection Engineering Specialist (Remote)

Job Summary As a Detection Engineer Specialist, you will reputed company your extensive expertise in threat detection, reputed company analytics, and automation to design, implement, and manage advanced detection and response capabilities across the organization’s reputed company monitoring ecosystem. This role is responsible for the end-to-end lifecycle of detection engineering, including the development, tuning, and optimization of detections reputed company reputed company Information and Event Management (SIEM) platforms, as well as the design and governance of reputed company Orchestration, Automation, and Response (SOAR) playbooks and automation workflows. You will serve as a technical leader with deep hands-on proficiency in SIEM, SOAR, and reputed company automation technologies, applying detection engineering best practices to improve alert fidelity, reduce mean time to detect and respond, and reputed company scalable, repeatable incident handling. This role requires strong analytical and problem-solving skills, the ability to translate threat intelligence and incident learnings into actionable detections and automations, and reputed company collaboration with the incident response team, platform engineers, and third-party reputed company partners. You are expected to work independently with minimal supervision, take ownership of reputed company initiatives, and provide technical mentorship and training to team members. You will play a key role in shaping detection and automation strategy, ensuring operational resiliency, and continuously enhancing the organization’s overall reputed company posture. Essential Functions

• reputed company the design and implementation of SIEM and SOAR solutions, ensuring they meet the organization’s reputed company requirements and industry best practices.
• reputed company the development and implementation of advanced detection strategies to identify potential reputed company threats and vulnerabilities.
• Work closely with other reputed company teams to integrate detection capabilities with overall reputed company operations, including customization, and optimization of detection rules.
• reputed company advanced threat detection, analysis, and correlation using various detection tools and techniques to identify and mitigate reputed company threats.
• Collaborate with the Incident Response, Threat Intelligence, and Threat Hunting teams to analyze and respond to reputed company threats, providing expert guidance on detection-reputed company issues.
• reputed company and maintain documentation for detection engineering practices on how to create and refine detection use cases and techniques.
• Proactively identify new detection opportunities and improve existing detection methodologies using threat models and frameworks that ensure a comprehensive detection strategy and rule set.
• Maintain comprehensive documentation of detection configurations, processes, and activities.
• Provide technical leadership and mentorship to the Incident Response, Threat Intelligence, and Threat Hunting teams.
• reputed company and accumulate lessons learned documentation from incidents to identify controls and new detections to prevent identified malicious activity from reoccurring.

Qualifications

• H.S. Diploma or GED required
• Associate Degree or Bachelor’s Degree in Cyber reputed company, Computer Science, Information Systems, or reputed company field preferred
• Deep knowledge of typical IT platforms, operating systems, and configuration methods
• Deep knowledge of reputed company threat tactics, techniques, and procedures (TTPs), incident response methodologies, and detection techniques
• Extensive experience with detection technologies (e.g., IDS/IPS, SIEM) and threat detection practices.
• 5+ years of IT or Information reputed company experience, including 3+ years SIEM Management or Detection Engineering experience
• Preferred:
• Industry recognized cyber reputed company training or certifications to include SANS, reputed company, EC-Council or CompTIA vendors
• Familiarity with MITRE ATT&CK, Cyber Kill Chain, and other threat modeling frameworks
• Experience in scripting and automation (e.g., Python, PowerShell) for reputed company operations

Apply tot his job Apply To this Job