Staff Security Engineer (detection Engineering)

Detection Engineer

We are seeking a talented Detection Engineer to join our Security Incident Response Team (SIRT) and help us protect our organization from cyber threats. The ideal candidate will have a deep understanding of security detection techniques and be able to design, implement, and maintain detection controls that detect and respond to security incidents. As a member of our SIRT, you will work closely with other engineers to identify and mitigate threats, shape detection strategy, and provide guidance on the design and implementation of security controls.

Responsibilities:

• Develop and maintain detection controls to monitor and detect security events that threaten the confidentiality, integrity, and availability of our organization's data and systems
• Analyze telemetry data from diverse sources to detect known and unknown security incidents using various security tools, such as SIEM (Splunk), EDR (Crowdstrike Falcon), CSPM (Wiz) and network traffic analysis
• Engage with threat hunting, event analysis and incident response squads to identify threats and vulnerabilities seen internally
• Build and implement security automation workflows using SOAR tools to streamline and enhance SIRT analysis and incident resolution
• Proactively research, identify, and understand the latest security threats and emerging trends, including their potential impact on our organization
• Collaborate with other engineers to design, implement, and maintain security controls based on security standards, best practices, policies, and regulatory requirements
• Provide guidance to enhance the creation, documentation, implementation, and adherence of security policies and procedures
• Participate in security incident response activities and help develop mitigation and remediation strategies
• Communicate security results and findings to technical audiences and management stakeholders through detailed analysis, briefings, and reports

Qualifications:

• BS/MS in Computer Science or related field or equivalent relevant experience. Experience in Cybersecurity and/or Identity and Access Management is strongly desired.
• 7+ years of professional experience on/leading policy or analytics teams in a compliance, security, risk, or financial fraud environment
• Developer experience in Python or comparable language preferred
• Expert in producing user-friendly data visualizations and adept at communicating with data
• Demonstrated project management skills for planning/driving tasks across organizations while keeping initiatives on track to achieve desired outcomes
• Ability to understand and demonstrate empathy for opposing points of view on highly complex issues
• Excellent written and verbal communication skills; ability to succinctly communicate technical and business requirements, business cases and other findings across organizational levels
• Proven ability to use productivity/collaboration tools such as MS Office, Google Suite, and Slack

If you have a passion for cybersecurity and a proven track record in security detection and incident response, we invite you to apply for this role. Join our SIRT team and help us protect our organization and customers from cyber threats.