Senior XSIAM Detection Engineer (Remote)

Join Our Mission to Revolutionize Cybersecurity

We're seeking a highly skilled Senior XSIAM Detection Engineer to join our dynamic team at Red Canary. As a remote team member, you'll have the flexibility to work from anywhere in the US, with a schedule that supports our 24/7 operations. In this critical role, you'll utilize your expertise to drive success and make a significant impact in the cybersecurity landscape.

About Us

Red Canary is a cutting-edge cybersecurity company dedicated to empowering organizations to make better security decisions and focus on their mission without fear of cyber threats. Our market-defining technology and expertise have earned us a place on the Forbes Best Start-up Employers 2022 list. We're committed to our values of doing what's right for the customer, being kind and authentic, delivering great quality, and being relentless in our pursuit of excellence.

Job Summary

As a Senior XSIAM Detection Engineer, you'll be an integral part of our XSIAM Detection Engineering & Response team, operating 24/7 to track down threats in source signal data and deliver fast and actionable detections to our customers. You'll leverage your expertise in configuring and managing Security Information and Event Management (SIEM) systems, creating alarms and dashboards, automating playbooks, and enriching data from outside sources.

Key Responsibilities

• Utilize Palo Alto's XSIAM platform, source signal data, and external resources to uncover threats and provide actionable insights to customers
• Develop advanced playbooks to reduce alert fatigue and maximize customer investment
• Build new detection capabilities into the XSIAM platform based on research of new attack techniques
• Leverage previous security operations experience to enhance the XSIAM Detection Engineering & Response team's knowledge-base and expertise
• Initiate and undertake tasks of writing XQL logic in the XSIAM platform to improve operational workflows
• Collaborate with customer support teams to solve customer problems and gather feedback on specific security concerns
• Lead projects to improve collaboration between the customer and the XSIAM Detection Engineering & Response team

Requirements

• 3+ years of experience in Information Security SIEM administration, parser development, cybersecurity content development, creating queries, alerting, and log analysis
• 3+ years of experience in scripting/process automation
• 3+ years of experience operating and supporting a large enterprise environment
• Experience with security configuration of operating systems, network devices, etc.
• Demonstrated expertise with at least one programming/scripting language
• Demonstrated experience with securing all aspects of an enterprise
• Demonstrated systems administration experience with Windows and Linux/UNIX-based operating systems
• Excellent verbal & written communication and presentation skills

What We Offer

• Competitive salary range: $115,360 - $137,000
• Eligibility for participation in the company's bonus program
• Grant of stock options, subject to the approval of the company's board of directors
• 100% paid premiums for medical, dental, and vision for you and your dependents
• Flexible time off, including vacation, sick, bereavement, jury duty, and holidays
• Paid parental leave and fertility benefits
• Pre-tax plans, including FSA, HRA, and HSA, with employer funding to offset out-of-pocket healthcare expenses
• Flexible work environment with a 60% remote workforce

How to Apply

If you're passionate about cybersecurity and want to join a dynamic team that's making a real difference, apply today. Please submit your application by January 31, 2025. We can't wait to hear from you!