Threat Detection Engineer

Threat Detection Engineer– Denver, CO (Hybrid)

Are you a passionate security professional?  Do you want to work for a global business that is committed to moving money for the better?  Are you interested in joining a globally diverse organization where our unique contributions are recognized and celebrated, allowing each of us to thrive? Then it’s time to join Western Union as a Threat Detection Engineer!

Applicants must be currently authorized to work in the United States on a full-time basis. Western Union will not sponsor applicants for work visas for this position including student visa.

Western Union powers your pursuit. 

In this critical role, you will be responsible for implementing, maintaining, monitoring, and managing SIEM solutions deployed throughout the security operations center (CFC). Working alongside cybersecurity engineering teams, the information security engineer facilitates architectural designs, best practices, and build advanced threat detection rules. This role is also responsible for providing support to the incident response, Insider Threat, ASR, Threat Intelligence, security operations and security audits during United States hours.

Role Responsibilities

• Develop use cases and create threat detection logic, rules, and alerting in SIEM and Analytics tools for response by CFC / IR
• Work with Threat Intel to identify and recommend new internal and external data sources to develop additional adverse based detection logic
• Onboarding new data sources and data normalization according to use case's needs.
• Operationalize Indicator of Compromise from intelligence feeds by developing, testing, and deploying monitoring and alerting rules into SIEM or Analytic solutions.​ 
• Responsible for providing support to the incident response, Insider Threat, ASR, Threat Intelligence, security operations and security audits during US hours.

Role Requirements 

• Bachelor’s degree in computer science, Information Security, or Information Systems or equivalent experience
• At least 5-7 years’ cybersecurity experience with at least 4 years in an engineering-based role supporting SOC and IR teams.
• Proficient in one or more Next Gen SIEM technologies (e.g.., Splunk , LogRhythm, Google Security Operations, or CrowdStrike).
• Advanced knowledge of operating system configuration (Windows, Unix, Linux) and networking (DNS, DHCP, routing protocols).
• Ability to analyze event and incident logs and work with SOC and IR teams to assess security events related to malware, vulnerabilities, exploits and kill chain methodology.
• Ability to interface with threat intelligence platforms and SOAR solutions to centralize and manage incidents and remediation workflow. 
• Experienced with one or more scripting languages (e.g., Python, PowerShell, Bash, etc.).
• Operationalize Indicator of Compromise from intelligence feeds by developing, testing, and deploying monitoring and alerting rules into SIEM or Analytic solutions.
• Basic knowledge of adversary tactics, techniques, and procedures (TTPs) and MITRE ATT&ACK principles.
• Certifications:  CISSP, GSEC, GCIH, GCIA, GCFE preferable, but not required.

We make financial services accessible to humans everywhere. Join us for what’s next. 

Western Union is positioned to become the world’s most accessible financial services company —transforming lives and communities. We’re a diverse and passionate customer-centric team of over 8,000 employees serving 200 countries and territories, reaching customers and receivers around the globe. More than moving money, we design easy-to-use products and services for our digital and physical financial ecosystem that help our customers move forward. 

Just as we help our global customers prosper, we support our employees in achieving their professional aspirations. You’ll have plenty of opportunities to learn new skills and build a career, as well as receive a great compensation package. If you’re ready to help drive the future of financial services, it’s time for Western Union. Learn more about our purpose and people at https://careers.westernunion.com/.  

Salary 

The base salary range is $130,000 – 150,000 USD per year, total on target compensation includes a base salary and short-term incentives that align with individual and company performance. Actual salaries will vary based on candidates’ qualifications, skills, and competencies.

Benefits 

You will also have access to short-term incentives, multiple health insurance options, accident and life insurance, and access to best-in-class development platforms, to name a few (https://careers.westernunion.com/global-benefits/). Please see the location-specific benefits below and note that your Recruiter may share additional role-specific benefits during your interview process or in an offer of employment.

Your United States – specific benefits include:

Family First Program

Flexible Time off

Medical, Dental and Life Insurance

Tuition Assistance Program

Parental Leave

Western Union values in-person collaboration, learning, and ideation whenever possible. We believe this creates value through common ways of working and supports the execution of enterprise objectives which will ultimately help us achieve our strategic goals. By connecting face-to-face, we are better able to learn from our peers, problem-solve together, and innovate.   

Our Hybrid Work Model categorizes each role into one of three categories. Western Union has determined the category of this role to be Hybrid. This is defined as a flexible working arrangement that enables employees to divide their time between working from home and working from an office location.

The expectation is to work from the office a minimum of three days a week.

We are passionate about diversity. Our commitment is to provide an inclusive culture that celebrates the unique backgrounds and perspectives of our global teams while reflecting the communities we serve. We do not discriminate based on race, color, national origin, religion, political affiliation, sex (including pregnancy), sexual orientation, gender identity, age, disability, marital status, or veteran status. The company will provide accommodation to applicants, including those with disabilities, during the recruitment process, following applicable laws. 

#LI-HD1

#LI-Hybrid

Estimated Job Posting End Date:

This application window is a good-faith estimate of the time that this posting will remain open. This posting will be promptly updated if the deadline is extended or the role is filled.