Blue Team Engineer

Are you passionate about technology and enjoy explaining complex solutions in a way that everybody gets excited? If so, read on!
About PicusPicus Security is a place where exceptional people gather to do their best work. We convert new ideas to exceptional solutions and great customer experiences. Bring passion and dedication to your job and there's no telling what you could accomplish. Join Picus to become part of our talented team!
Picus Security pioneered Breach and Attack Simulation (BAS) technology in 2013, recognized as a Cool Vendor in Security and Risk Management by Gartner in 2019 and a leading vendor in BAS Market by Frost & Sullivan in 2022. Picus is a Series-B startup supported by reputable private equity and venture capital organizations including Mastercard, Turkven, Earlybird Capital, ACT and Endeavor Catalyst.
Picus Security’s complete security validation platform helps CISOs and security teams gain visibility over their security posture by continuously validating their security controls and their SIEM/SOC tools, and remediating any potential exposure rapidly with the help of Breach and Attack Simulation technology.
About The RolePicus Labs is a place for Cyber Security Innovation— In Picus Labs, we elevate offensive and defensive cyber security technologies.
We're looking to grow our team to support the high growth and global expansion plans of Picus with developing new technologies. With this role, you'll get a chance to work for innovation. You will be constantly challenged and you will get to develop your knowledge and skills in cyber security technologies.
This is an amazing opportunity where you get to research for a fast-growing cyber security startup. As a Blue Team Engineer in Picus Labs, you will manage internal SOC processes, analyze new adversarial techniques and attacks developed by Picus Labs Red Team and develop threat detection & hunting scenarios. You will research new threat detection & hunting methodologies and technologies, onboard and iterate.

What You’ll Do

• Analyze, understand and use public research about current cyber threats and detection methods/tools
• Deploy, configure, and maintain security technologies, including NG Firewalls, IPS, WAF, EDR, XDR, SOAR, SIEM, and DLP solutions to assess each of the cybersecurity technology’s responses to Picus Attacks
• Develop open-source and vendor based threat detection scenarios
• Develop tooling for Detection Development Life-Cycle
• Research on new threat hunting methodologies, tools, and technologies
• Onboard and maintain detection and hunting products (SIEM, EDR, etc.)
• Manage and maintain internal SOC technologies and processes
• Effectively use threat intelligence services and malware sandboxes for hunting new malware threats
• Work with Picus Labs Red Team on purple teaming
• Work with engineering teams on the development of new product features

What You Have

• Hands-on experience in hunting current adversarial techniques
• Strong threat detection and hunting knowledge
• Strong SIGMA and YARA rule development knowledge
• Hands-on experience in administering and using network security, SIEM, SOAR, XDR and EDR technologies
• Willingness to improve in defensive tooling
• Knowledge of Mitre ATT&CK framework and threat intelligence services
• Community contribution to defensive knowledge will be a plus. (Open source projects, etc.)
• Proficiency in written English

Working at PicusFascinating work - a chance to shape and lead an exciting, fast-growing cyber security segment. Breach and Attack Simulation is a new concept that helps organizations evaluate their security posture in a continuous, automated, and repeatable way. This approach allows for the identification of imminent threats, provides recommended actions, and produces valuable metrics about cyber-risk levels.
Unlimited opportunity! We are growing. At Picus, you'll be provided with as much responsibility as you can handle - new career development opportunities constantly arise given our rate of growth.
Global exposure - Get a lot of experience working not only in a fast-growing startup but also interact with customers all around the world.
Be part of a global team that’s located in Turkey, UK, US, UAE, Italy, Singapore, India, Mexico and Brazil.

We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to age, sex, race, color, national origin, religious belief, gender or gender reassignment, sexual orientation, marriage or civil partnership, pregnancy and maternity, disability, protected veteran status, or any other characteristic protected by International law.  Upon conditional offer of employment, candidates are required to complete reference and identity checks in line with local labor laws and as per the Company’s employment policy.