Senior Detection Engineer

Senior Detection Engineer

Hybrid - Delft

The Opportunity

Our Global Detection Engineering Team provides detection capabilities for various security products used in our 24/7 managed monitoring service with customers all over the world. This role will be to join our detection engineering team, where you will focus on one of our detection capabilities.

You will use our latest Threat Intelligence and your own creativity to write and maintain detection logic for our customers. Proving that the detection works is paramount, so you will test the new and existing detection set extensively against known attacks. Previous experience with detection engineering is not a hard prerequisite. We're looking for a wide range of backgrounds for potential candidates, the exact responsibilities of any candidate can be tailored given their experience and skillset. Any candidate that only partially matches the skillset is encouraged to apply.

Responsibilities

•    Develop new detection logic to contribute to Detection Engineering content repository.
•    Write and maintain detection tests cases.
•    Review findings of TI, CERT, and Red Team activities and evaluate from a detection engineering improvement perspective.
•    Providing guidance and support to the rest of Fox-IT and NCC Group regarding detection development, and the continuous improvement of the MDR (Managed Detection and Response) landscape in terms of detection engineering

Desired Requirements:

•    A security mindset and demonstrable experience or knowledge of the contemporary attack tactics and techniques.
•    Strong knowledge of the latest threats in security or is eager to build this knowledge,
•    Experience with simulating attacks. Certificates such as CEH and OSCP are not required but are a plus.
•    Experience with Endpoint or Network monitoring.
•    Experience with SIEM tools, preferably Splunk and/or Microsoft Sentinel.
•    Experience with Scripting languages such as PowerShell, Python, Bash
•    Experience with version control (Git, Azure Dev Ops, etc.)

And has knowledge of one or more of the below:
•    Azure or other cloud technologies,
•    Windows Active Directory,
•    Windows Operating System fundamentals,
•    Networking fundamentals.

Become a Foxer!

Do you recognize yourself in the above description and see the match? Let us know how you envision this! You can apply via the button below. You will then be directed to our ATS Workday, allowing us to process your application quickly.

A comprehensive screening is part of the onboarding process at Fox-IT.

Help from recruitment agencies, however well-intentioned, is (really) not needed.

About Your Application

We review every application and will contact you if your knowledge and work experience match what we are looking for. If you do not hear from us within 10 days, please do not be disappointed; we will keep your CV in our database for potential future vacancies and encourage you to keep an eye on our vacancies on our website. Feel free to apply for another position that appeals to you!

If you do not want us to keep your details, please send an email to global.ta@nccgroup.com. All personal data is stored in accordance with the NCC Group's privacy policy. We are committed to diversity and flexibility in the workplace. If you need any adjustments during the application process, please let us know.

If you need further modifications or additional assistance, feel free to ask!