Lead a high-performing team of Detection & Response engineers
Pioneer new, impactful features & technologies aimed at dramatically improving SOC efficacy and efficiency
Work closely with Product Management and Data Science teams to focus on delivering transformative capabilities to the SOC analysts
Ensure the team is continuously improving Expel’s detection and quality controls by creating, validating, and evolving our detection strategies, improving our measurement capabilities, and up-leveling our monitoring abilities
Instill a culture of experimentation, quality, and continuous improvement within the D&R team
Requirements
5+ years of related professional experience
Highly effective team management and project management skills
MDR experience strongly preferred
Senior or higher technical detection engineering expertise within at least one of identity, cloud, or endpoint security paradigms
Substantial understanding of detection engineering and associated technologies and frameworks
Strong knowledge of creating and validating detection strategies for a variety of technology types (e.g. identity, cloud, endpoint)
In-depth knowledge of attack vectors, threat tactics, and attacker techniques
Familiarity with automation, traditional ML, and GenAI concepts and platforms (e.g., LLMs, agents)
Familiarity with large-scale data processing/ETL pipelines and cloud infrastructure (AWS/Azure/GCP)