about 2 hours ago
Base Salary
$230k - $260k/yr
Responsibilities
- Design and maintain high-signal detections across various environments.
- Build and improve the detection platform, focusing on rule lifecycle management.
- Develop tooling and automation for triage, investigation, and detection authoring.
- Translate threat intelligence into actionable detections and response improvements.
- Participate in investigations and incident response to drive security enhancements.
- Define and track key metrics to guide investment decisions.
- Participate in a shared on-call rotation for incident response.
Requirements
- 6+ years of experience in detection engineering, security operations, or incident response.
- Experience building and operating production detections with strong signal quality.
- Fluency in detection languages such as Sigma, KQL, or YARA-L.
- Strong cloud security experience in AWS, GCP, or Azure.
- Hands-on experience with SIEM, EDR, and SOAR platforms.
- Ability to communicate clearly through design docs and incident reports.