JSOC - Senior Detection Engineer
Tasks
- Author SIGMA rules
- Author detection rules
- Build alert severity framework
- Collaborate with SIEM engineers
- Collaborate with SOC analysts
- Communicate detection decisions
- Conduct log analysis
- Deploy detection rules
- Document detection rationale
- Generate detection metrics
- Maintain detection portfolio
- Maintain runbooks and escalation procedures
- Mentor team members
- Perform threat modeling
- Reduce false-positives
- Retire stale detections
- Test detection rules
- Translate threat intelligence into detections
- Tune detection logic
- Validate alerts with purple team
Perks/Benefits
- Career growth and development opportunities
- Community volunteering opportunities
- Health and wellbeing resources
- Hybrid work environment
- Paid vacation
- Personal days
- Sick days
Skills/Tech-stack
Alert Tuning | Data Exploration | Detection engineering | Detection rules | EQL | ESQL | Elastic Detection Rules | Elastic SIEM | False positive reduction | KQL | Log Analysis | MITRE ATT&CK | Purple Team | SIEM | Sigma | Signal To Noise | Signal-to-noise ratio | Threat Intelligence | Threat modeling
Education
N/A
Related jobs
-
Mid-level Full TimeBrazil - Remote R1d ago
-
Solutions Engineer BRL 108K-144KAWS CloudFormation | Account Management | Anti-Malware | Azure | Cloud platformCustomer facing events participation | Regional travelMid-level Full TimeBrazil Off-Site2d ago
-
Solutions Engineer BRL 114K-132KAWS | AWS CloudFormation | Anti-Malware | Cloud Computing | Cloud platformRegional travelMid-level Full TimeBrazil Off-Site2d ago
-
Ciso Id43394 BRL 180K-185KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flexible schedule | Mentorship | Remote work optionsSenior-level Full TimeSão Paulo, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | Cloud Security | DevSecOps | IEC 27001 | ISO/IECEducation budget | Fitness budget | Flextime | Mentorship | Personalized growth roadmapsExecutive-level Full TimeSão Paulo, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flextime | Mentorship | Office work optionsExecutive-level Full TimePorto Alegre, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | Blue Team | Blue team operations | By Design | Cloud SecurityEducation budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeRecife, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KBy Design | Cloud Security | DevSecOps | ISMS | ISO 27001Education budget | Fitness budget | Flextime | Mentorship | Office work optionsExecutive-level Full TimeCampinas, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | Cloud Security | DevSecOps | ISO 27001 | ISO/IECEducation budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeFlorianópolis, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | ISOIEC 27001Flextime | Mentorship | Office options | Personalized growth roadmaps | Remote workExecutive-level Full TimeCuritiba, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flextime | Mentorship | Office optionsExecutive-level Full TimePorto Alegre, Brazil4d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flexible schedule | Mentorship | Office optionExecutive-level Full TimeSão Bernardo do Campo, Brazil4d ago
-
Senior Cybersecurity Engineer (API Security & Platform) BRL 181K-181KAPI Gateway | Certificate management | Git | GitOps | Incident ResponseRemote workSenior-level Full TimeSão Paulo, SP, Brazil R6d ago
-
Senior Security Analyst BRL 129K-129KAWS | Agile | Authentication | Authentication Management | CSIRTBonus | Career progression | Health care | Hybrid work | MentorshipSenior-level Full TimeSão Paulo7d ago
-
API Integration | Application Firewall | Automation | Content Filtering | Correlation rulesCareer growth and development | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid vacationSenior-level Full TimeBrazil8d ago
-
Vulnerability Management Senior Advisor BRL 108K-116KAqua Security | Bash | CIS Benchmarks | Cause analysis | DevOpsSenior-level Full TimeEldorado Do Sul, Brazil9d ago
-
Engenheiro (a) de Segurança Sênior BRL 84K-84KAWS | Application Security | Automation | Azure | BashAdvanced English proficiency | Travel availabilityMid-level Full TimeSão Carlos, SP, Brazil12d ago
-
DevSecOps Engineer BRL 304K-380KAccess Control | Application Firewall | Application Security Testing | Authentication | CI/CDRemote work flexibility | WeWork access optionalMid-level Full TimeBrazil R12d ago
-
Director of Information Security ID43394 BRL 164K-173KAwareness Training | Cloud Security | DevSecOps | IEC 27001 | ISMSEducation budget | Fitness budget | Flextime | Mentorship | Office optionsExecutive-level Full TimeRecife, Brazil13d ago
-
Director of Information Security ID43394 BRL 164K-173KBy Design | Cloud Security | DevSecOps | ISO 27001 | ISO 27701Education budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeSalvador, Brazil13d ago
-
Director of Information Security ID43394 BRL 164K-173KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeSão Paulo, Brazil13d ago
-
Director of Information Security ID43394 BRL 164K-173KCloud Security | DevSecOps | IEC 27001 | ISMS | ISO/IECEducation budget | Fitness budget | Flexible schedule | Mentorship | Personalized growth roadmapsExecutive-level Full TimeSorocaba, Brazil13d ago
-
Director of Information Security ID43394 BRL 164K-173KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Flexible schedule | Mentorship | Office work options | Personalized growth roadmaps | Remote work optionsExecutive-level Full TimeBrasília, Brazil13d ago
-
Director of Information Security ID43394 BRL 164K-173KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeBelo Horizonte, Brazil13d ago
-
Director of Information Security ID43394 BRL 164K-173KBy Design | Cloud Security | DevSecOps | IEC 27001 | ISO/IECEducation budget | Fitness budget | Flextime | Mentorship | Office optionsExecutive-level Full TimeRio de Janeiro, Brazil13d ago