Threat Detection Senior Engineer
About The Position
About this role: Wells Fargo is seeking a Senior Information Security Engineer in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com. Wells Fargo is seeking a Senior Threat Detection Engineer to join our Cybersecurity team. This role will focus on enhancing our threat detection capabilities by developing and tuning detection content across Splunk, CrowdStrike, and Microsoft Defender platforms. The ideal candidate will have hands-on experience with these technologies and a solid understanding of MITRE ATT&CK tactics, techniques, and procedures (TTPs) used by threat actors. This position will work closely with detection engineers, threat intelligence analysts, and SOC personnel to improve detection fidelity and coverage. In this role, you will: Translate threat intelligence into actionable detection use cases. Stay current on emerging threats, attacker TTPs, and detection technologies. Work under the guidance of Lead and Principal Detection Engineers to implement scalable detection strategies. Support continuous improvement initiatives within the detection engineering function.
Requirements
- 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 2+ years of hands-on experience with Splunk, CrowdStrike, and Microsoft Defender.
- Working knowledge of MITRE ATT&CK framework and threat actor TTPs.
- Experience developing and tuning detection content for high signal-to-noise ratio.
- Familiarity with scripting languages such as Python or PowerShell.
- Ability to travel up to 5% of the time.
- Ability to work in a fast-paced, high-demand environment while balancing multiple priorities.
Nice To Haves
- Exposure to SOAR platforms and threat intelligence integration.
- Certifications in Splunk, CrowdStrike, or Microsoft Defender.
- Experience with cloud-native security services (AWS, Azure, GCP).
- Understanding of threat hunting methodologies and behavioral analytics.
- Ability to communicate technical concepts to diverse audiences.
Responsibilities
- Support engineering and operational efforts for threat detection platforms including Splunk, CrowdStrike, and Microsoft Defender.
- Develop and tune detection logic mapped to MITRE ATT&CK techniques.
- Create and maintain dashboards, alerts, and reports to support threat detection and incident response.
- Collaborate with cross-functional teams to ensure alignment of detection content with threat intelligence and business priorities.
- Assist in the integration of threat intelligence feeds and automation tools to enrich detection pipelines.
- Participate in detection content lifecycle management including testing, deployment, and refinement.
- Contribute to documentation and playbooks for detection engineering processes.
Benefits
- Health benefits
- 401(k) Plan
- Paid time off
- Disability benefits
- Life insurance, critical illness insurance, and accident insurance
- Parental leave
- Critical caregiving leave
- Discounts and savings
- Commuter benefits
- Tuition reimbursement
- Scholarships for dependent children
- Adoption reimbursement
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
