JSOC - Senior Detection Engineer
Tasks
- Author SIGMA rules
- Author detection rules
- Build alert severity framework
- Collaborate with SIEM engineers
- Collaborate with SOC analysts
- Communicate detection decisions
- Conduct log analysis
- Deploy detection rules
- Document detection rationale
- Generate detection metrics
- Maintain detection portfolio
- Maintain runbooks and escalation procedures
- Mentor team members
- Perform threat modeling
- Reduce false-positives
- Retire stale detections
- Test detection rules
- Translate threat intelligence into detections
- Tune detection logic
- Validate alerts with purple team
Perks/Benefits
- Career growth and development opportunities
- Community volunteering opportunities
- Health and wellbeing resources
- Hybrid work environment
- Paid vacation
- Personal days
- Sick days
Skills/Tech-stack
Alert Tuning | Data Exploration | Detection engineering | Detection rules | EQL | ESQL | Elastic Detection Rules | Elastic SIEM | False positive reduction | KQL | Log Analysis | MITRE ATT&CK | Purple Team | SIEM | Sigma | Signal To Noise | Signal-to-noise ratio | Threat Intelligence | Threat modeling
Education
N/A
Related jobs
-
Mid-level Full TimeSão Paulo, Brazil2d ago
-
Principal, Database Security Engineering BRL 54K-60KAccess Management | Activity monitoring | CI/CD | CIS Benchmarks | Cloud SecuritySenior-level Full TimeBR001 São José dos Campos, Brazil5d ago
-
Senior Security Architect BRL 156K-184KApplication Security | CI/CD | Cloud Security | Cloud platform | Code ManagementAnnual performance bonus | Health, dental, and vision plans | Hybrid work option | Remote work | Stock optionsSenior-level Full TimeBrazil R5d ago
-
Senior Application Security Engineer BRL 184K-184KApplication Security | Application Security Testing | CI/CD | Checkov | Composition analysisAnnual performance bonus | Dental insurance | Health insurance | Hybrid work option | Remote workSenior-level Full TimeBrazil R5d ago
-
365 Admin | Access Control | Claroty | Cloud Security | Critical InfrastructureEntry-level Full TimeBelo Horizonte, Brazil5d ago
-
Cyber Security Leader BRL 54K-72KAttack surface | Attack surface management | Blue Team | Crisis management | Cyber EngineeringChildcare assistance | Dental insurance | Gympass or Totalpass | Health insurance | Life insuranceSenior-level Full TimeSANTANDER RADAR BL A 2 AND, …6d ago
-
Senior Application Security Engineer MXN 934K-1260KApplication Security | Application Security Testing | CI/CD | Checkov | Cloud NativeRemote workSenior-level Full TimeArgentina, Mexico, Colombia, Brazil R6d ago
-
AI Governance | AWS | Access Management | Application Security | Awareness TrainingDental insurance | Health insurance | Home office stipend | Inclusive culture | Mental health supportMid-level Full TimeBrazil R6d ago
-
Consultor Cyber Security - Microsoft Security Solutions Architect (Azure | Senior Associate 2 [tag01] BRL 90K-96KAccess Management | Azure Bicep | Azure Firewall | Azure Key Vault | Azure Landing ZoneMid-level Full TimeAE - Barueri, Brazil14d ago
-
AWS | Asset Security | Azure | Cloud Security | DCSCross-functional collaboration | Remote work available | Travel opportunityMid-level Full TimeSão Paulo, São Paulo, BR R14d ago
-
Senior Security Analyst BRL 129K-129KAWS | Agile | Authentication Management | CSIRT | DLPHealth care | Hybrid work | Mentorship | Social benefitsSenior-level Full TimeSão Paulo14d ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | AWS Security | Alert Tuning | CI/CD | Container SecuritySenior-level Full TimeBrazil, Remote R19d ago
-
AWS | Application Security | Burp Suite | CWE Top 25 | Cause analysisAdoption Assistance | Bonuses | Certification completion bonus | Certification reimbursement | Employee referral bonusMid-level Full TimeSão Paulo, Brazil R19d ago
-
Senior-level Full TimeBELO HORIZONTE 02, Brazil20d ago
-
DevSecOps Engineer BRL 234K-295KAccess Control | Application Security Testing | Authentication | CI/CD | CheckovAdditional benefits and perks | Remote work flexibility | Stock grant opportunities | WeWork access optionalMid-level Full TimeBrazil R20d ago
-
Analista de Segurança da Informação - SOC BRL 35K-41KAPI Integration | Artificial Intelligence | Compliance | Event management | Generative AIFlexible work hours | Work-life balanceEntry-level Full TimeBarueri, BR21d ago
-
Mid-level Full TimeBrazil - Remote R22d ago
-
Ciso Id43394 BRL 180K-185KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flexible schedule | Mentorship | Remote work optionsSenior-level Full TimeSão Paulo, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | Cloud Security | DevSecOps | IEC 27001 | ISO/IECEducation budget | Fitness budget | Flextime | Mentorship | Personalized growth roadmapsExecutive-level Full TimeSão Paulo, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flextime | Mentorship | Office work optionsExecutive-level Full TimePorto Alegre, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | Blue Team | Blue team operations | By Design | Cloud SecurityEducation budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeRecife, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KBy Design | Cloud Security | DevSecOps | ISMS | ISO 27001Education budget | Fitness budget | Flextime | Mentorship | Office work optionsExecutive-level Full TimeCampinas, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | Cloud Security | DevSecOps | ISO 27001 | ISO/IECEducation budget | Fitness budget | Flexible schedule | Mentorship | Office optionsExecutive-level Full TimeFlorianópolis, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | ISOIEC 27001Flextime | Mentorship | Office options | Personalized growth roadmaps | Remote workExecutive-level Full TimeCuritiba, Brazil24d ago
-
Director of Information Security ID43394 BRL 260K-300KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Education budget | Fitness budget | Flextime | Mentorship | Office optionsExecutive-level Full TimePorto Alegre, Brazil24d ago