Detection Engineer

Job description

Job title:

Detection Engineer

Place of work:

Hybrid (Naperville, IL, Chicago, IL)

Working hours:

Full-time

Tasks:

• Build, refine, and manage detection content to identify and mitigate potential threats.
• Develop a Detection-as-Code standard using code repositories and CI/CD pipelines to streamline content deployment via Infrastructure-as-Code methodologies.
• Work closely with various teams in Security Operations to anticipate and detect potential threats before they fully materialize.
• Participate in continuous improvement initiatives to enhance detection capabilities and efficiency.
• Develop and maintain documentation for detection logic, use cases, and response playbooks.
• Maintain up-to-date knowledge of the latest cybersecurity threats, tools, and best practices.
• Contribute to automation of detection and response processes using SOAR platforms.

Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 3+ years of experience in cybersecurity, preferably in detection engineering, threat hunting, or incident response.
• Proficiency in writing and tuning detection logic in SIEM platforms (e.g., Splunk, Sentinel, Elastic).
• Strong understanding of cybersecurity principles, including SIEM, IDS/IPS, and endpoint detection and response (EDR) solutions.
• Experience with coding/scripting languages such as Python, PowerShell, or Bash.
• Familiarity with CI/CD pipelines, code repositories (e.g., Git), and Infrastructure-as-Code tools (e.g., Terraform, Available).
• Excellent problem-solving skills and attention to detail.
• Strong communication and documentation abilities.

Preferred qualifications:

• Experience in a cloud environment (e.g., AWS, Azure, GCP).
• Knowledge of malware analysis, reverse engineering, and digital forensics.
• Experience with performing insider threat analysis and detections.
• Knowledge of security orchestration and automation platforms.

We offer:

• Gehaltsspanne: $114,500 - $194,700 USD.
• Umfassendes Benefits-Paket, einschließlich Rentenleistungen (401k und Pension), Gesundheits- und Sozialleistungen (Krankenversicherung, Zahnversicherung, Sehversicherung, Ausgabenkonten und Behinderungsversicherung), bezahlter Urlaub, Eltern- und Pflegeurlaub, Lebens- und Unfallversicherung sowie andere freiwillige und flexible Leistungen.
• Diskretionäres Bonusprogramm, das möglicherweise eine Eigenkapitalkomponente enthält.

Arbeitsumgebung:

• Flexible and collaborative working culture.
• Organisation, die finanzielle Stärke und Stabilität als Asset betrachtet, um neue Ideen zu erkunden.
• Movement within the organization is encouraged, senior leaders are accessible.