Cyber Security Detection Engineer

About The Position

Requirements

• Bachelor's degree in Information Security or Computer Science or related field.
• Minimum 8-10 years of overall experience in Cyber Security, IT, Risk Assessments, Privacy
• Experience analyzing threat data, understanding IT systems, security tools, and managing detection content for high fidelity alerting into threat behavior
• All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.
• Proficiency in scripting languages (e.g., Python, PowerShell).
• Experience with SIEM platforms, EDR tools, and threat intelligence platforms.
• Familiarity with detection-as-code frameworks and telemetry analysis.
• Strong analytical and problem-solving abilities.
• Excellent communication and collaboration skills.
• Ability to work independently and in cross-functional teams.

Nice To Haves

• 5+ years in cybersecurity, with hands-on experience in detection engineering, threat hunting, and incident response.

Responsibilities

• Develop and maintain detection functions using telemetry from various sources (e.g., endpoint logs, cloud logs, email scanning, sandbox analysis).
• Create and optimize detection components and functions (e.g., YARA rules, Sigma rules, SIEM hunts) to identify malicious activity 
• Expand telemetry and signal coverage while reducing noise to improve detection fidelity 
• Assimilate and operationalize open-source threat intelligence feeds.
• Generate internal cyber threat intelligence reports and indicators of compromise (IOCs).
• Integrate threat intelligence into detection platforms to enhance visibility and response 
• Design and execute proactive threat hunting routines across enterprise environments.
• Identify anomalous behaviors and potential threats not detected by automated systems.
• Analyze security alerts and determine their impact and severity.
• Lead incident response efforts including containment, eradication, and recovery.
• Collaborate with SOC analysts and other stakeholders to ensure timely resolution.
• Develop and implement remediation plans for identified threats and vulnerabilities.
• Document findings and lessons learned to improve future detection and response capabilities.
• Contribute to the continuous improvement of security operations and detection engineering processes.

Benefits

• We offer competitive compensation; 401K match and benefits that start day 1.
• Our hybrid environment allows you to balance your work and personal life.
• Our comprehensive benefits portfolio is a key component of this commitment and offers an array of health care benefits including but not limited to medical, dental and vision insurances along with disability and a robust wellness program.
• To support a healthy work-life balance, we offer flexible work schedules, paid vacation and holiday time, sick time, and dependent sick time.
• A variety of additional benefits are available to our professionals, including a company-matched 401k plan, adoption reimbursement, tuition reimbursement, vendor discounts, an employment referral program, AD&D insurance, pre-taxed accounts, voluntary legal plan and the B&V Credit Union.
• Professionals may also be eligible for a performance-based bonus program.
• As employee-owners, our professionals are empowered to drive not only their personal growth, but the company's long-term achievements - and they share in the financial rewards of the success through stock ownership.