Correlation Engineer
Tasks
- Analyze threat trends and attack patterns
- Collaborate with SOC analysts and data engineering
- Design correlation logic and detection content
- Develop detection metrics and dashboards
- Document rule behavior and performance characteristics
- Implement automated enrichment suppression and tuning
- Lead post incident correlation analysis
- Maintain correlation content lifecycle version control and deployment
- Test tune and validate correlation rules
- Train SOC staff on correlation logic and workflows
Perks/Benefits
- N/A
Skills/Tech-stack
Correlation rules | Dashboarding | Data Mapping | Data analytics | Detection engineering | False positive reduction | KQL | Log Analysis | Machine Data | Machine Data Analytics | Mitre Attack | SIEM | Security analytics | Sigma | Splunk SPL | Telemetry normalization | Testing Frameworks | Threat hunting | Threat modeling
Education
Bachelor of Engineering | Bachelor of Science | Master of Arts | Master of Science | PhD
Related jobs
-
Manager, Threat Detection and Response USD 187K-253KAWS | Alert triage | Antivirus | Cloud Security | Detection engineeringAI adoption guidance | Occasional off hours incident response supportMid-level Full TimeNew York, New York, United States10h ago
-
Vice President, Information Security USD 200K-250KAI Security | API Security | AWS Security | Access Management | Active DirectoryExecutive-level Full TimeDenver, CO12h ago
-
Senior Security Engineer, Detection Engineering USD 181K-217KAWS | Cloud Security | Cloud platform | Data Pipelines | Detection engineering401k match | Accident insurance | Dental insurance | Disability insurance | Employee assistance programSenior-level Full TimeDenver, CO; New York City, NY; … R12h ago
-
Manager, Application Security USD 123K-175KApplication Security | Bug Bounty | CI/CD | Cause analysis | DASTHybrid work | Remote workSenior-level Full TimeUnited States, Remote R13h ago
-
Sr. SIEM Engineering Consultant USD 140K-180KAccess Management | Ansible | Azure | Azure Monitor | BashRemote work | Security clearance eligibility | Support for on site engagementsSenior-level Full TimeWork from home, VA, United States R16h ago
-
Senior-level Full TimeWork from home, VA, United States R16h ago
-
Manager, Security Engineering & Operations USD 123K-175KAI | AWS | Automation | CNAPP | Detection engineeringHybrid work | Remote workSenior-level Full TimeUnited States, Remote R18h ago
-
Cyber Security Engineer USD 110K-140KAnti-tamper | Architecture assessment | Artifact generation | Attack vector analysis | Authoring toolsMid-level Full TimeDayton, Ohio, United States18h ago
-
Senior Cybersecurity Pre-Sales Technical Architect USD 115K-195KAttack Surface Analysis | Attack surface | Cloud Security | Compliance Auditing | CybersecurityCompany culture | Health benefits | Life insurance | Pension plan | Professional developmentSenior-level Full TimeLisle, IL, US19h ago
-
Cybersecurity Systems Engineer USD 148K-263KA&A | ABAC | ATO | Access Management | Body of EvidenceHealth insurance | Holiday pay | Learning and development | Life insurance | Long-term disabilitySenior-level Full TimeUSA-Remote Work R21h ago
-
Senior Security Engineer USD 131K-169KAPI Security | AWS | Application Security | Attack Surface Reduction | Attack surface401k matching | Company-paid medical | Flexible spending account | Flexible time off | Great Place to Work cultureSenior-level Full TimeAustin, TX, United States; Chicago, IL, …1d ago
-
Manager, Cybersecurity Operations Center USD 118K-166KAdvanced Analytics | Automation | Business Continuity | Business Continuity Planning | Change ManagementBackground check required | Competitive benefits package | Hybrid work options | Professional developmentSenior-level Full TimeJersey City, New Jersey, United States1d ago
-
AI Application Security Engineer USD 198K-297KAccess Control | Application Security | Audit Logging | Authentication | Authorization401k | Commuter benefits | Daily lunches | Medical/Dental/Vision | Unlimited PTOMid-level Full TimeSan Francisco Bay Area1d ago
-
API | Agile | Ansible | Automation | Automation ScriptingSenior-level Full TimeFort Bragg, NC, United States1d ago
-
Senior-level Full TimeCalifornia, United States1d ago
-
Security Operations Engineer USD 120K-180KAWS | Asset discovery | Bash | CI/CD | Cloud SecurityCompany-sponsored team events | Flexible time off | Wellness resourcesSenior-level Full TimeLehi, Utah1d ago
-
Security Operations Engineer USD 170K-255KAWS | Asset discovery | Atomic Red Team | Azure | BashCompany-sponsored team events | Flexible time off | Wellness resourcesSenior-level Full TimeSanta Clara, California1d ago
-
Application Security Engineer USD 184K-240KAWS | Authentication | Authorization | Bug Bounty | DASTAI Stipend | Beverages | Daily lunch | Dental insurance | Flexible time offSenior-level Full TimeSan Francisco1d ago
-
Lead Workstation Agentic AI Engineer USD 120K-180KAgentic AI | Artificial Intelligence | Azure DevOps | Business Intelligence | CI/CDContinuing education support | Flexible time off | Health care coverage | Retirement planningSenior-level Full TimeUS - NJ - PRINCETON ONE …1d ago
-
Senior Software Engineer - Cybersecurity USD 141K-212KAWS | Application Security | Authentication | Authorization | AzureChallenging projects | Competitive compensation | Professional developmentSenior-level Full TimeWaukesha, United States R1d ago
-
Sr. SOC Analyst USD 85K-90KDetection engineering | Digital forensics | EDR | Incident Response | Linux Internals401k match | Dental insurance | Employee stock purchase plan | Incentive bonus plans | Medical insuranceSenior-level Full TimeSan Antonio, TX, United States1d ago
-
Staff Software Engineer USD 150K-211KABAC | AWS | Account takeover | Account takeover detection | AngularSenior-level Full TimeSterling - Pacific Boulevard, United States1d ago
-
Cybersecurity Engineer II USD 107K-160KArtificial Intelligence | Automation | Bot management | Cloud Security | Cyber Kill ChainBereavement leave | Hybrid work option | Jury duty leave | Military Leave | Paid HolidaysMid-level Full TimeNorth Hills, NY - 3400 New … R1d ago
-
AWS | Automation | Azure | CI/CD | CIMSenior-level Full TimeRemote, Missouri, United States of America R1d ago
-
Cybersecurity Engineer USD 40K-40KAWS | Active Directory | Advanced Email Threat Protection | Application Firewall | Detection and preventionMid-level Full TimeSupport Services Building Smithfield VA, United …1d ago