4 days ago
Base Salary
$160k - $190k/yr
Responsibilities
- Design high-fidelity detections and correlation logic in Splunk Enterprise Security and AWS OpenSearch.
- Build AI-powered detection tooling that ingests threat intel and recommends new use cases.
- Write production code in Python, Java, and Bash to automate workflows and integrate with APIs.
- Engineer ETL pipelines for log ingestion, normalization, and routing across various environments.
- Translate red team findings and threat hunts into detection improvements and control enhancements.
- Drive detection standards and reusable patterns across endpoint, network, identity, and cloud domains.
- Mentor engineers and analysts on detection methodology and secure software practices.
Requirements
- Bachelor's degree in Computer Science, Cybersecurity, or a related field; Master's preferred.
- 6+ years in software and/or security engineering, with 2+ years in enterprise SIEM detections.
- 2+ years of experience developing security automation or AI/ML-based applications.
- Strong command of AWS services and EDR platforms.
- Fluency with MITRE ATT&CK, NIST CSF, Zero Trust, and CIS Controls.
- Experience supporting compliance audits from a hands-on engineering perspective.