"Alerted.org

Job Description

Day to Day

An Employer is hiring a Detection Engineer for a contract role, who will be supporting the Cyber Security organization.

GENERAL DUTIES & RESPONSIBILITIES

- Develop custom detection logic across SIEM, EDR, and other security tooling within a cutting-edge technology stack.

- Leverage threat modeling, detection engineering frameworks, and other creative methods to produce high-fidelity, investigation-worthy alerting.

- Work closely with cross-functional teams to create tailored, purpose-built security content.

- Lead technical knowledge sharing sessions to empower other teammates and stay on the forefront of content development & beyond.

- Possess a “detection-as-code” mindset to drive security content that is confidently deployed, continuously tested, and expertly tuned.

- Become immersed in our technology stack and logging to deliver solutions that push the boundaries of our security capabilities. Use this familiarity to present our security teams with the most relevant data to make quick and accurate decisions.

- Stay current with the latest detection engineering techniques, threat tactics, and industry knowledgebase.

Shape the future of our data science and advanced analytic efforts.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

- 2+ years of:

• Experience with cloud-native data platforms, event streaming and analytic engines

• Knowledge of network design and data flow/pipelines.

• Strong understanding of security data lakes, SIEM, EDR, and interacting with SOAR.

• Expert proficiency with one of the following programming/scripting languages and query languages (Python, R, Powershell, SQL/KQL/LQL). Adaptability to new languages and technologies.

• Clean and thoughtful documentation to enable knowledge sharing and reference materials.

• Familiarity with “detection-as-code” and implementing CI/CD in detection engineering

• In-depth knowledge of security technologies (encryption, data protection, design, privilege access, etc.).

Exploratory mindset, ownership, time management, presentation and organizational skills. Passion for securing the mission, continuous learning and a growth mindset.

- Bachelor’s degree in computer science/information systems or the equivalent combination of education, training, or work experience.

- GSEC, GCIH, CISSP or other security or network certifications desired - Agile project development methodologies and incident case management experience.

Ability to identify untapped value, while also possessing a “consumer-first” mindset to build outstanding security content.