Detection Engineer - AVP

About The Position

Requirements

• Two years of experience in cybersecurity detection engineering gained through a Bachelor’s (BSc) in STEM; or through employment or volunteering.
• Industry recognized cybersecurity certifications with demonstrable, hands-on proficiency.
• Proven capability in analysing high-volume datasets to uncover patterns and actionable insights
• Ability to code detection use cases using SPL or FQL.
• Ability to use Splunk for detection engineering.
• Ability to perform data manipulation, analysis, and reporting using Python, r, or similar analytics language.
• Ability to use Structured Query Language (SQL).
• Knowledge of the cyber global threat landscape; cyber adversaries; cyber tactics, techniques, and procedures (TTPs); cyber threat intelligence sources and methods; and malware.
• Knowledge of infrastructure and application telemetry.
• Ability to use Jira and Confluence to develop, document, collaborate, and release use cases into production environments.
• Ability to write polished descriptive and persuasive business documents.
• Ability to craft reasoned explanations for decisions that can withstand audit scrutiny.

Nice To Haves

• Ethical hacking, data analytics, military cyber operations, penetration testing, cyber defense, and cyber transformation program management.
• Broad knowledge of cyber security software, business processes, organizational structure, and challenges.
• Software development and scripting experience using RegEx, PERL, Python, or Powershell.
• Ability to create polished presentations in PowerPoint, PowerBI, or other data visualization tools.
• Experience at a large, multi-national financial services firm.
• Experience at a large, multi-national technology consulting firm.

Responsibilities

• Draft and deliver detection use cases in Falcon Query Language (FQL) and other security query languages.
• Draft and deliver Jira and Confluence pages about detection use cases following prescribed business processes.
• Investigate threat reports and request for detections to determine if a new detection use case is warranted.
• Present production ready use cases to executive governing boards for review and approval.
• Write detection oriented business cases, project plans, and reasoned explanations for decisions made about detections to support the execution of detection engineering projects.
• Partners with technical and non-technical professionals to enhance detection functions, and to drive better protection and response.

Benefits

• Our retirement savings plan (401K) with company match
• Insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
• Paid-time off including vacation, sick leave, short term disability, and family care responsibilities
• Access to our Employee Assistance Program
• Incentive compensation including eligibility for annual performance-based awards
• Eligibility for certain tax advantaged savings plans
• Inclusive development opportunities
• Flexible work-life support
• Paid volunteer days
• Vibrant employee networks