Senior SIEM Detection Engineer
Tasks
- Automate detection tasks and integrations
- Build detection dashboards and investigative views
- Conduct log analysis for anomaly detection
- Design detection rules and correlation logic
- Develop enrichment and data normalization
- Integrate SIEM detections with SOAR workflows
- Map detections to MITRE ATT&CK
- Monitor detection health and performance
- Participate in incident detection and response workflows
- Perform post incident reviews to improve coverage
- Perform threat hunting and data mining
- Troubleshoot ingestion and data issues
- Tune detections to reduce false positives
Perks/Benefits
- N/A
Skills/Tech-stack
Alert Tuning | Anomaly Detection | Correlation rules | CrowdStrike | Data Enrichment | Data Normalization | Detection engineering | EDR | Elastic Agent | Elastic Security | Elasticsearch | Filebeat | Firewall | IDS | Incident Response | Kibana | Log Analysis | Logstash | MITRE ATT&CK | Palo XSIAM | Python | Regular Expressions | SIEM | SOAR | Swimlane
Education
Related jobs
-
Senior AI Engineer USD 172K-220KA/B | A/B Testing | API Integration | Agent Frameworks | B testingCareer growth | Continuous shipping | Customer collaborationSenior-level Full TimeUnited States8h ago
-
Sr. Security Engineer II USD 162K-190KAWS | AWS CloudTrail | AWS Control Tower | AWS GuardDuty | AWS KMSSenior-level Full TimeUnited States of America - Remote … R10h ago
-
DevOps Engineer USD 95K-135KAWS | Agile | Azure | Bash | CI/CDDental insurance | Medical insurance | Vision insuranceMid-level Full TimeNeedham, Massachusetts, United States12h ago
-
Senior Cybersecurity Engineer USD 148K-306KAuthentication | Authorization | CI/CD | Code Reviews | Compliance documentationSenior-level Full TimeArlington, VA12h ago
-
Cybersecurity Engineer USD 86K-176KAuthentication | Authorization | CI/CD | Code review | Continuous DeploymentMid-level Full TimeArlington, VA12h ago
-
Cybersecurity Engineer USD 86K-176KApplication Security Testing | Authentication | Authorization | CI/CD | Code reviewActive TS SCI clearance with polygraphMid-level Full TimeArlington, VA13h ago
-
Network Engineer 2 USD 98K-168KArista | CAN | Cisco | Firewall | GRE tunnelingDental insurance | Health savings account | Identity theft protection | Legal protection | Life insuranceSenior-level Full TimeColumbia, Maryland13h ago
-
Senior Security Engineer USD 139K-210KAWS | Access Control | Access Management | Alerting | Audit ReadinessContinuing education budget | Coworking stipend | Home office stipend | Remote-first environmentSenior-level Full TimeRemote: United States | Canada R13h ago
-
AI Solutions Architect- Post-Sales (UK) USD 180K-220KAWS | Azure | Cloud Networking | Containerization | Docker401k options | Dental coverage | Flexible time off | Fully remote | Health and wellness benefitsSenior-level Full TimeRemote- US R15h ago
-
AWS | Azure | Azure DevOps | CI/CD | CISCorporate holidays | Flexible time off | Group dental insurance | Group medical insurance | Home internet allowanceMid-level Full TimeBoston, MA R17h ago
-
Sr. Reverse Engineer USD 130K-140KAsset-backed securities | Cashflow modeling | Data Analysis | Deal Waterfalls | Excel401k | Fitness fund | Health insurance | Learning and development fund | Paid family leaveSenior-level Full TimeRemote - USA R20h ago
-
Database Design | ETL | Excel | Pandas | PythonHands-on learning | Mentorship | Real-world datasetsEntry-level InternshipMcLean, VA, US1d ago
-
Intern Cyber Security Engineer USD 52K-69K365 Security | Access Control | Access Management | Application Firewall | AuthenticationEntry-level InternshipMcLean, VA, US1d ago
-
Software Engineer, Security & Privacy USD 170K-230KAWS | AWS CDK | Authentication | Authorization | COPPACompany holidays | Flexible PTO | Hybrid work model | Medical/Dental/Vision insuranceSenior-level Full TimeSan Francisco Bay Area, CA1d ago
-
Software Engineer, Security & Privacy USD 170K-230KAPI Security | AWS | AWS CDK | Authentication | AuthorizationCompany holidays | Flexible PTO | Hybrid work | Medical/Dental/Vision insuranceSenior-level Full TimeNew York, NY1d ago
-
Archer GRC Engineer I USD 40K-58KBash | DHCP | DNS | Database systems | Incident ManagementFlexible onsite schedule | Hybrid work model | Stable compliant remote workstation requirementsEntry-level Full Time399 Revolution Drive Somerville (Assembly Row …1d ago
-
Senior Associate IS Security Engineer USD 123K-123KBinary Analysis | Botnets | Critical Infrastructure | Critical infrastructure security | Incident Management24 7 security services continuity support | Dental insurance | Disability insurance | Flexible spending accounts | Health insuranceMid-level Full TimeUS - California - Thousand Oaks, …1d ago
-
Behavioral analytics | Cloud Security | Correlation rules | Dashboarding | Data IngestionMid-level Full TimeHerndon, VA1d ago
-
Senior-level Full Time6314 Remote/Teleworker US, United States R1d ago
-
DevSecOps Engineer (Secret clearance) USD 107K-195KACAS | Active Directory | Ansible | ArgoCD | ArtifactorySenior-level Full Time6314 Remote/Teleworker US, United States R1d ago
-
26-1097: Device / Endpoint Security Engineer (Posture, Enforcement, EDR ) - Herndon, VA USD 113K-172KAccess Control | Automation | Compliance enforcement | Configuration Management | Detection and ResponseMid-level Full TimeHerndon, VA1d ago
-
Senior Software Engineer USD 107K-195KAPI Development | AWS | Apache NiFi | Application Level Security | BashFlexible work arrangements | Professional development | Team collaboration | TrainingSenior-level Full Time1662 Intelligence Community Campus - Bethesda …1d ago
-
Senior-level Full Time9614 Arlington VA Non-specific Customer Site, …1d ago
-
Splunk Content Developer USD 131K-237KAPI Integration | Automation | Bash | CIM | Command-line InterfaceSenior-level Full Time9614 Arlington VA Non-specific Customer Site, …1d ago
-
Senior-level Full TimeUnited States, Creve Coeur, MO, CityPlace, …1d ago