I am currently working with a very exciting client to bring on a Threat Detection Engineer! This is an amazing opportunity to be part of a growing cyber team and have the opportunnity to impact the companies security posture.
Candidate Profile
- 3+ years in a role performing Threat Detection, IR, Threat Intelligence, or Abuse Mitigation
- Python Scripting Experience
- Automating expereince in threat detection and threat hunting
- Understand how to develop rules utilizing hypothesis driven detection research leveraging tools such as
- Python
- Athena, SQL, Presto etc..
- Threat Intelligence Services and OSINT
- Ability to decipher complex detection logic and to teach team members how the detection works, the theory behind it, and what to do when the alert is triggered
- Familiarity with MITRE ATT&CK and researching emerging threats
- Understanding of different types of detection engines and knowing the right tool to leverage at the right time
- Understanding of what logs are available and useful for:
- Linux (Production Workloads), Mac, Windows
- AWS (Primary), GCP, Azure
- Experience using log analysis platforms such as ELK and Splunk
- Experience with Linux (Debian is a huge plus!)
- BS (or equivalent) in Computer Science
Benefits
- Full Benefits
- Bonus
- Hybrid
