SIEM Threat Detection Engineer
Remote
DeepSeas
Nearly 1,000 organizations trust DeepSeas to transform their cybersecurity program with 24x7 detection and response, pen testing, and vCISO services.
SIEM Threat Detection Engineer
With 30 years of experience in cyber defense, DeepSeas is trusted by nearly 1,000 clients around the world, including Fortune 100 enterprises and mid-market organizations, higher education institutions, municipality and local governments, and federal agencies. Known for its programmatic approach to continuously transforming cyber defense programs, DeepSeas is recognized by Gartner as a top 40 provider of MDR and ranked as a top 5 MDR leader in the 2024 Frost Radar™: Global Managed Detection and Response (MDR) Market. In addition to its industry-leading MDR service, DeepSeas offers a full suite of advisory, compliance, and testing services to support clients on their cybersecurity transformation journeys, with an approach to cyber defense that prioritizes technical expertise, tradecraft, and continuous innovation to deliver unparalleled results.
Position Overview
As the Threat Detection Engineer, you will work with the Threat Detection Engineering team to proactively identify detection gaps and develop new signatures to alert on malicious cyber activity. Tune existing detections. You will support product, sales and marketing teams by providing in depth subject matter expertise about the capabilities of various EDR products. You will be a key collaborator in the design, development, and deployment of threat detection capabilities. You will support a rapidly growing organization and customer base. Leverages self-motivation and internal drive to research unknown problems and tackle new challenges.
• Develop detection logic for a variety of endpoint detection tools
• Work with the various internal stakeholders to develop new detection solutions
• Respond to support requests from the SOC
The person in this role is required to provide:
• 5+ years' experience in Cybersecurity
• At least one year experience in a SOC analyst role
• Strong log analysis skills
• Knowledge of cloud-based technologies
• Understanding of Mitre ATT&CK
• Previous experience writing detection logic
• At least one year experience in a SOC analyst role
• Strong log analysis skills
• Knowledge of cloud-based technologies
• Understanding of Mitre ATT&CK
• Previous experience writing detection logic
Helpful Qualifications
• Familiarity with a variety of SIEM tools
• Working knowledge of Python
• Experience with threat hunting
• Data engineering experience
• We are a company where you will be able to make a direct impact on both the product and company culture. Your opinions matter and are listened to.
• Our culture is collaborative, one that respects and appreciates you for your unique skills.
• We are a tight-knit group where you will be supported in achieving your best while enjoying your work life.
• You will be challenged and learn new skills in the latest technologies.
• You will be able to work on a variety of projects and won’t get bored!
• We enjoy a flexible work schedule and casual work environment
• Competitive benefits package including full healthcare, dental, vision, Paid Time Off, Sick Leave, Personal Choice Holidays, Life/Accident Insurance, 401(k) Retirement Plan with company matching, Company Bonus & more
This is your chance to join a supportive crew of teammates and an industry-leading organization that values opportunities for growth. If DeepSeas sounds like a good fit for you, send us your resume and let’s talk!
Information security is everyone’s responsibility:
• Understanding and following DeepSeas’s information security policies and procedures.
• Remaining vigilant and reporting any suspicious activity or possible weaknesses in DeepSeas’s information security.
• Actively participating in DeepSeas’s efforts to maintain and improve information
• security.
• DeepSeas considers this position is as Moderate Risk with a potential to
• view/access/download restricted/private client/internal data. This information must be treated with
• sensitivity and in the most secure manner. HR reserves the right to perform random background/drug
• screens to ensure the safety of client/DeepSeas data
Department: Security Operations
Employment Type: Full Time
Location: Remote
Description
Who is DeepSeasWith 30 years of experience in cyber defense, DeepSeas is trusted by nearly 1,000 clients around the world, including Fortune 100 enterprises and mid-market organizations, higher education institutions, municipality and local governments, and federal agencies. Known for its programmatic approach to continuously transforming cyber defense programs, DeepSeas is recognized by Gartner as a top 40 provider of MDR and ranked as a top 5 MDR leader in the 2024 Frost Radar™: Global Managed Detection and Response (MDR) Market. In addition to its industry-leading MDR service, DeepSeas offers a full suite of advisory, compliance, and testing services to support clients on their cybersecurity transformation journeys, with an approach to cyber defense that prioritizes technical expertise, tradecraft, and continuous innovation to deliver unparalleled results.
Position Overview
As the Threat Detection Engineer, you will work with the Threat Detection Engineering team to proactively identify detection gaps and develop new signatures to alert on malicious cyber activity. Tune existing detections. You will support product, sales and marketing teams by providing in depth subject matter expertise about the capabilities of various EDR products. You will be a key collaborator in the design, development, and deployment of threat detection capabilities. You will support a rapidly growing organization and customer base. Leverages self-motivation and internal drive to research unknown problems and tackle new challenges.
Key Responsibilities
• Consume Cyber Threat Intelligence reports to identify detection opportunities• Develop detection logic for a variety of endpoint detection tools
• Work with the various internal stakeholders to develop new detection solutions
• Respond to support requests from the SOC
The person in this role is required to provide:
• 5+ years' experience in Cybersecurity
• At least one year experience in a SOC analyst role
• Strong log analysis skills
• Knowledge of cloud-based technologies
• Understanding of Mitre ATT&CK
• Previous experience writing detection logic
Skills Knowledge and Expertise
• 5+ years' experience in Cybersecurity• At least one year experience in a SOC analyst role
• Strong log analysis skills
• Knowledge of cloud-based technologies
• Understanding of Mitre ATT&CK
• Previous experience writing detection logic
Helpful Qualifications
• Familiarity with a variety of SIEM tools
• Working knowledge of Python
• Experience with threat hunting
• Data engineering experience
Why DeepSeas?
• Join a strong/profitable industry leader in one of the highest growth industries around.• We are a company where you will be able to make a direct impact on both the product and company culture. Your opinions matter and are listened to.
• Our culture is collaborative, one that respects and appreciates you for your unique skills.
• We are a tight-knit group where you will be supported in achieving your best while enjoying your work life.
• You will be challenged and learn new skills in the latest technologies.
• You will be able to work on a variety of projects and won’t get bored!
• We enjoy a flexible work schedule and casual work environment
• Competitive benefits package including full healthcare, dental, vision, Paid Time Off, Sick Leave, Personal Choice Holidays, Life/Accident Insurance, 401(k) Retirement Plan with company matching, Company Bonus & more
This is your chance to join a supportive crew of teammates and an industry-leading organization that values opportunities for growth. If DeepSeas sounds like a good fit for you, send us your resume and let’s talk!
Information security is everyone’s responsibility:
• Understanding and following DeepSeas’s information security policies and procedures.
• Remaining vigilant and reporting any suspicious activity or possible weaknesses in DeepSeas’s information security.
• Actively participating in DeepSeas’s efforts to maintain and improve information
• security.
• DeepSeas considers this position is as Moderate Risk with a potential to
• view/access/download restricted/private client/internal data. This information must be treated with
• sensitivity and in the most secure manner. HR reserves the right to perform random background/drug
• screens to ensure the safety of client/DeepSeas data
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
Security Engineering Jobs
Threat Intel Jobs
Tags: Cloud Compliance Cyber defense EDR Log analysis MITRE ATT&CK Python SIEM SOC Threat detection Threat intelligence
Perks/benefits: Career development Flex hours Flex vacation Health care
Region:
Remote/Anywhere
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cloud Security Engineer jobsInformation System Security Officer jobsInformation Systems Security Officer jobsInformation Security Manager jobsSenior Network Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Specialist jobsSecurity Consultant jobsSecurity Specialist jobsSenior Information Security Analyst jobsSenior Penetration Tester jobsIT Security Engineer jobsCyber Security Specialist jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsPrincipal Security Engineer jobsIT Security Analyst jobsStaff Security Engineer jobsInformation System Security Officer (ISSO) jobsCloud Security Architect jobsCyber Security Architect jobsSecurity Operations Analyst jobsSystems Administrator jobsSenior Information Security Engineer jobsThreat Intelligence Analyst jobs
GDPR jobsSaaS jobsEncryption jobsForensics jobsTop Secret jobsEDR jobsSDLC jobsMalware jobsRMF jobsSplunk jobsSQL jobsIDS jobsIPS jobsBash jobsCompTIA jobsIntrusion detection jobsDocker jobsDoDD 8570 jobsFinance jobsITIL jobsThreat detection jobsOWASP jobsTerraform jobsTCP/IP jobsCRISC jobs
Active Directory jobsGIAC jobsVPN jobsClearance Required jobsIT infrastructure jobsUNIX jobsBanking jobsSANS jobsJavaScript jobsJira jobsHIPAA jobsAnsible jobsDNS jobsPolygraph jobsOSCP jobsMITRE ATT&CK jobsSOX jobsData Analytics jobsMachine Learning jobsSOC 2 jobsSOAR jobsCCSP jobsGCIH jobsSecurity strategy jobsCISO jobs