Manager, Detection & Response Engineering

Expel is a company focused on enhancing security operations through innovative detection and response capabilities. The role involves leading a high-performing team to improve SOC efficacy and efficiency by developing impactful features and technologies, while ensuring continuous improvement in detection strategies and quality controls.

Responsibilities:

• Lead a high-performing team of Detection & Response engineers
• Pioneer new, impactful features & technologies aimed at dramatically improving SOC efficacy and efficiency
• Work closely with Product Management and Data Science teams to focus on delivering transformative capabilities to the SOC analysts
• Ensure the team is continuously improving Expel’s detection and quality controls by creating, validating, and evolving our detection strategies, improving our measurement capabilities, and up-leveling our monitoring abilities
• Instill a culture of experimentation, quality, and continuous improvement within the D&R team

Requirements:

• 5+ years of related professional experience
• Highly effective team management and project management skills
• Senior or higher technical detection engineering expertise within at least one of identity, cloud, or endpoint security paradigms
• Substantial understanding of detection engineering and associated technologies and frameworks
• Strong knowledge of creating and validating detection strategies for a variety of technology types (e.g. identity, cloud, endpoint)
• In-depth knowledge of attack vectors, threat tactics, and attacker techniques
• Familiarity with automation, traditional ML, and GenAI concepts and platforms (e.g., LLMs, agents)
• Familiarity with large-scale data processing/ETL pipelines and cloud infrastructure (AWS/Azure/GCP)
• MDR experience strongly preferred