Software Technology Inc.Remote
Security Detection Engineer
United States of America
Contract
4 hours ago
No H1B
Key skills
Detection EngineeringRule TuningPythonBashPowerShellSIEMDashboardsSigmaYARAMITRE ATT&CKLarge IT EnvironmentsMulti-tenant SystemsCommunication
About this role
Software Technology Inc. is seeking a Security Detection Engineer to enhance their security operations. The role involves reviewing and improving SIEM detection rules, identifying gaps in detection coverage, and collaborating with SOC analysts to meet security goals.
Responsibilities:
- Review, tune, and improve SIEM detection rules
- Identify gaps in detection coverage and develop solutions
- Monitor threat intelligence for new use cases
- Collaborate with SOC analysts and threat hunters
- Document processes, runbooks, and troubleshooting steps
- Work with engineering and agency teams to meet security goals
Requirements:
- Experience in detection engineering and rule tuning
- Strong scripting skills (Python, Bash, PowerShell)
- Knowledge of SIEM, dashboards, and reporting
- Familiarity with Sigma, YARA, and MITRE ATT&CK
- Experience in large IT environments / multi-tenant systems
- Strong communication skills
- Bachelor's in IT/Security (or equivalent experience)
- 5+ years relevant experience (large IT environments & automation)
- Experience with Palo Alto Cortex XSIAM
- Strong understanding of Windows/Linux artifacts
- Experience in enterprise or multi-agency environments
- Preferred: CISSP, CISA, CEH, OSCP, or similar certifications