Detection Engineer – AVP
Quincy, Massachusetts, United States of America
Full Time
2 hours ago
$90,000 - $157,500 USD
Visa Sponsor
Key skills
Cyber SecurityPythonSplunkSQLRAnalyticsJiraConfluenceSales
About this role
Role Overview
- Draft and deliver detection use cases in Falcon Query Language (FQL) and other security query languages.
- Draft and deliver Jira and Confluence pages about detection use cases following prescribed business processes.
- Investigate threat reports and request for detections to determine if a new detection use case is warranted.
- Present production ready use cases to executive governing boards for review and approval.
- Write detection oriented business cases, project plans, and reasoned explanations for decisions made about detections to support the execution of detection engineering projects.
- Partners with technical and non-technical professionals to enhance detection functions, and to drive better protection and response.
Requirements
- Two years of experience in cybersecurity detection engineering gained through a Bachelor’s (BSc) in STEM; or through employment or volunteering.
- Industry recognized cybersecurity certifications with demonstrable, hands-on proficiency.
- Proven capability in analysing high-volume datasets to uncover patterns and actionable insights
- Ability to code detection use cases using SPL or FQL.
- Ability to use Splunk for detection engineering.
- Ability to perform data manipulation, analysis, and reporting using Python, r, or similar analytics language.
- Ability to use Structured Query Language (SQL).
- Knowledge of the cyber global threat landscape; cyber adversaries; cyber tactics, techniques, and procedures (TTPs); cyber threat intelligence sources and methods; and malware.
- Knowledge of infrastructure and application telemetry.
- Ability to use Jira and Confluence to develop, document, collaborate, and release use cases into production environments.
- Ability to write polished descriptive and persuasive business documents.
- Ability to craft reasoned explanations for decisions that can withstand audit scrutiny.
Tech Stack
- Cyber Security
- Python
- Splunk
- SQL
Benefits
- insurance coverage including basic life, medical, dental, vision, long-term disability
- paid-time off including vacation, sick leave, short term disability, and family care responsibilities
- access to our Employee Assistance Program
- incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans)
- eligibility for certain tax advantaged savings plans