3 days ago
Remote, Costa RicaSenior / Mid Level
H1B Sponsor
Responsibilities
- Develop and implement detection rules in SIEM tools like Splunk or Microsoft Sentinel.
- Translate TTPs into actionable detection logic using the MITRE ATT&CK framework.
- Utilize Python for scripting and automation of detection infrastructure.
- Write and update detection logic and playbooks independently.
- Contribute to the scalability and maintenance of engineering projects using data platforms.
Requirements
- Hands-on experience with SIEM tools for developing detection rules.
- Familiarity with the MITRE ATT&CK framework.
- Strong scripting skills in Python for detection infrastructure management.
- Excellent reporting and analytical skills with experience in IDS/IPS and YARA signatures.
- Ability to validate detection logic and perform root cause analysis.
Benefits
- Various health plans.
- Time off plans for vacation and sick time.
- Parental leave options.
- Retirement options.
- Education reimbursement.
- In-office perks and more.