2 days ago
Dublin, Ireland
Senior
H1B Sponsor
Responsibilities
- Design, build, and tune high-fidelity detections across modern SIEM platforms.
- Develop detection hypotheses by researching TTPs and identifying evidence sources.
- Conduct hypothesis-driven threat hunts to identify malicious activity.
- Perform malware analysis and reverse engineering to inform detection strategies.
- Build network-based and endpoint-based detections across multiple OS platforms.
- Partner with Threat Intelligence to operationalize intel reports into detections.
- Collaborate with IR, SOC, and offensive security teams to validate detections.
- Build data pipelines and automation for scalable detection engineering.
- Map detection coverage to MITRE ATT&CK and prioritize gaps.
- Lead projects, mentor teammates, and champion quality standards.
Requirements
- 5+ years of experience in detection engineering, threat hunting, or security operations.
- Experience writing detection logic in modern SIEM platforms.
- Strong understanding of adversary tradecraft across the attack lifecycle.
- Ability to extract TTPs from threat intelligence reports.
- Experience developing network-based and endpoint-based detections.
- Experience analyzing telemetry across various log sources.
- Proficiency in detection/query languages and programming.
- Strong communication skills for documenting detection logic.
- Adversarial mindset to build effective detections.
Tech Stack
AWSAzureDatabricksGoogle Cloud PlatformPythonSplunkSQL
Categories
Security