Detection Engineer

OVERVIEW

The Maples Group is a standard bearer in financial and legal services, trusted by many of the world’s largest hedge fund managers, private equity firms and international corporations.

Our distinction flows from our carefully curated team: 2,500+ professionals characterised by tenacity, ethics, and exacting excellence. Operating in key financial centres across the Americas, Asia, Europe and the Middle East, our international presence offers a unique springboard for career development and cross-cultural immersion. Our side-by-side financial and legal services are similarly ripe for interdisciplinary learning and growth. 

The Maples Group looks to add a Leeds based Detection Engineer to our team and invites eager and qualified candidates to apply. We are committed to diversity, inclusion, and equality of opportunity as we attract, retain, and develop world-class talent.

Who We Seek

Our merit-based culture suits professionals in pursuit of boundless careers and lives. Beyond their acumen, team members are collaborative and conscientious, bringing a healthy sense of drive and purpose to each interaction and to all aspects of their work.

About the Role

This role is responsible for continuously enhancing our detection and threat response capabilities across different complex Maples environments. Primary responsibilities include: 

• Analyze attacker tactics, techniques and procedures (TTPs) and build countermeasures to detect and/or stop unauthorized exploits using endpoint telemetry. These countermeasures should be supported by best-practice frameworks such as the MITRE ATT&CK
• Analyse detection coverage and identify coverage gaps and areas of improvement
• Tune detection rules to reduce false positives and noise
• Design, engineer and manage automations and workflow improvements for security operations analysts to triage and respond to detected events
• Serve as a technical resource for the security operations team during active response efforts
• Ensure that the company’s sensitive information and IT equipment are kept safe by implementing the correct security measures
• Creating, testing and validating detection capabilities within Maples systems and environment
• Document and maintain Detection and Incident Response procedures as required
• Implement innovative approaches to address inefficiencies in security processes
• Researching new methods to find malicious behaviour in Maples environments
• Monitor and translate threat intelligence feeds into actionable detection
• Examines various logs to determine trends and identify security incidents
• Assists in responding to audits, penetration tests and vulnerability assessments
• Develop, manage, and measure KPIs, KRIs and additional metrics to understand the trends, quality, and insights from the vulnerability detection results to facilitate business decisions, automation development, and update of executive dashboards, reports and templates
• Conduct and manage event/incident investigations and postmortem analysis as needed

EXPERIENCE

What You Bring

In addition to indisputably high ethical standards and autonomy, the ideal candidate possesses the following:

• Bachelor’s degree in computer science, information systems, cybersecurity, or a related field
• Security certifications: GCIA, GCFA, GCFE, CISSP (Associate), CEH, or comps
• Experience in one or more areas: security operations, cyber threat hunting, Endpoint Detection and Response (EDR), detection signatures and analytics
• Experience with SIEM content development, security monitoring, incident detection, incident response and forensics
• Experience in Threat hunting & IR experience in Windows and/or Linux environments, cloud/hybrid environments
• Proficient in SIEM and log management configuration and analysis
• Experience with Security Orchestration Automation and Response tools
• Experience/familiarity with Cyber Intelligence, Threat Operations, Penetration Testing, Red Teaming, Incident Response and Threat Hunting methodologies

• Experience with intrusion detection systems and intrusion prevention systems
• Familiarity with managing Linux servers
• Familiarity with Ruby, Python, PHP, PowerShell, SQL and/or shell scripting.
• Ability to drive architectural design decisions, solve technical problems, and make improvements to our systems and processes
• Ability to troubleshoot and perform root cause analysis of incidents to identify solutions, next steps, and issue mitigation
• Ability to interface with, and gain the respect of, stakeholders at all levels and roles in the company
• Is a confident, energetic self-starter, with strong interpersonal skills and high sense of urgency and personal integrity

BENEFITS & REWARDS 

The most enduring professional relationships are reciprocal relationships. The Maples Group prioritises employee health and wellbeing. Depending on your location, we offer a range of benefits, including:

• Comprehensive health coverage (medical, dental, and optical)
• Competitive vacation packages
• Educational assistance and professional development programmes
• Savings or pension plan
• Life insurance
• Travel insurance
• Global mental wellness programme
• Sports clubs and social events

ABOUT MAPLES GROUP

Over five decades, the Maples Group has grown from modest beginnings into one of the world's preeminent professional services firms, offering specialised fiduciary, fund administration, regulatory and compliance, entity formation and management and legal services on the laws of the British Virgin Islands, the Cayman Islands, Ireland, Jersey, and Luxembourg.

You can learn more about the Maples Group on our corporate website. Experience our culture and our people on our Careers Page or on LinkedIn.

Maples’ standard policy to undertake various background screening checks, including criminal records checks, on all applicants to whom a conditional job offer is made. Maples will only ask applicants to disclose a past criminal conviction when a conditional job offer is made. If you have a criminal record, it does not mean that your job offer will be automatically withdrawn. Maples will make all job offer decisions on a case-by-case basis and will take a number of factors into account, such as the role that you are applying for and the nature and circumstances of the past offence. You will have the opportunity to discuss the matter with Maples before a decision is made.

Disclaimer: All personal information collected during the application process will be used for recruitment-related purposes only. Please refer to our Job Applicant Privacy Notice at maples.com/privacy for details on how we handle personal information relating to job applicants.