QA Engineer - Automated Detection

Quality Engineer, Detection Automation

ABOUT THE ROLE

The Detection Automation team is responsible for a detection automation pipeline to translate detection candidates from Threat Intelligence, Security, and Detection researchers into detection artifacts that ensure a timely release to our Security Services teams. As a Quality Engineer on our Detection Automation team, you will be responsible for the planning, implementation, and reporting of testing for detection automation software and workflows. The detection automation team ensures quality and scale of our automated detection base and presents actionable detections to our Security Services teams and customers.

Arctic Wolf Labs is the research-focused division at Arctic Wolf focused on advancing innovation in the field of security operations. The mission of Arctic Wolf Labs is to develop cutting-edge technology and tools that are designed to enhance the company’s core mission to end cyber risk, while also bringing comprehensive security intelligence to Arctic Wolf’s customer base and the security community-at-large. Leveraging the more than two trillion security events the Arctic Wolf Security Operations Cloud ingests, parses, enriches, and analyzes each week, Arctic Wolf Labs is responsible for performing threat research on new and emerging adversaries, developing advanced threat detection models, and driving improvement in the speed, scale, and detection abilities of Arctic Wolf’s solution offerings. The Arctic Wolf Labs team comprises security and threat intelligence researchers, data scientists, security development engineers with deep domain knowledge in artificial intelligence (AI), security R&D, as well as advanced threat offensive and defensive methods and technologies. Security Research Services Development partners with these groups to understand requirements, design & implement scalable, fault-tolerant solutions, and build the next generation of security capabilities for Arctic Wolf.

AS A QUALITY ENGINEER, DETECTION AUTOMATION AT ARCTIC WOLF, YOU WILL:

· Act as a member of our Technical Team, representing QA.

· Implement technical components for detection QA.

· Oversee the quality assurance lifecycle for detection systems.

· Develop and implement comprehensive test plans and test cases.

· Establish and coordinate testing strategies with cross-functional teams.

· Design, develop, and execute automation systems (Python) for detection systems.

· Implement and maintain test automation frameworks.

· Ensure continuous integration flows are effective and maintained.

· Mentor and guide QA team members and Detection Developers, fostering a culture of continuous learning.

· Collaborate with development, product management, and security teams to integrate QA processes into the Agile development lifecycle.

· Review and analyze system specifications and requirements.

· Collect data to communicate status during weekly leadership roundtables.

· Stay updated with new testing tools and test strategies in use throughout Arctic Wolf and externally.

ABOUT YOU

You’re a talented Quality Engineer who understands what it means to release quality software and products. You care about the impact of quality on the business. You are familiar with security detections and related technologies and care deeply about code quality and reliability while optimizing performance. You enjoy coordinating with distributed cross-functional teams. You are constantly adapting to emerging technologies, trends, and best practices. You will build productive internal/external working relationships to resolve mutual problems by collaborating on procedures or transactions, with a focus on providing standard professional advice and creating initial reports/analyses for review by experienced team professionals.

Here are some of the core technologies we use and teach across our detections teams:

· Python

· SQL

· Sigma

· Suricata

· Wazuh

· Kibana

· Git

You are not required to be an expert in any of these, but you should be excited by the opportunity to learn new things and comfortable with coming up to speed quickly. Any experience with detection development or full-stack development frameworks and practices is relevant and transferrable.

WE’RE LOOKING FOR SOMEONE WITH:

· Demonstrable working knowledge of industry standard QA test frameworks, methods, and systems.

· Experience with QA methodologies, processes, and best practices.

· Experience with detection development tools such as Sigma, Suricata, Wazuh, and Kibana.

· Experience in performance and/or security testing.

· Proven experience with CI/CD tools (e.g., Jenkins, GitLab) and configuration management systems (e.g., Git).

· Proficiency in programming languages such as Python, Java, or JavaScript.

· Experience with automation frameworks (e.g., Selenium, Appium).

· Familiarity with secure network protocols and web architectural styles (e.g., REST, TLS).

· Excellent written communication skills with a love of authoring effective playbooks / guides.

· Ability to multi-task and manage multiple projects simultaneously.

· Experience working in an Agile/Scrum development environment.

· Experience leading Agile/Scrum development cycles.

· 2+ years of experience in software QA with a focus on detection systems or security applications.

· Familiarity with security related QA methods including Atomic Attack Scenario testing, detection/sensor/alert regression testing, attack scenario testing, usability testing, system performance testing, etc is ideal.