JSOC - Senior Detection Engineer
Tasks
- Author Sigma rules for cross platform portability
- Author test deploy detection rules
- Build alert severity framework
- Collaborate with SIEM engineers on rule infrastructure
- Communicate detection changes and coverage analysis
- Conduct log analysis to validate detections
- Maintain detection portfolio coverage and fidelity
- Maintain runbooks and escalation procedures
- Mentor detection engineering best practices
- Perform threat modeling to identify detection gaps
- Produce detection metrics by MITRE ATT&CK
- Retire stale detections with documentation
- Translate threat intelligence into detection requirements
- Tune detection logic reduce false positives
- Validate alerts purple team exercises
Perks/Benefits
- Career growth and development opportunities
- Community contribution opportunities
- Health and wellbeing resources
- Hybrid work environment
- Paid vacation personal and sick days
Skills/Tech-stack
Data Exploration | Detection rules | EQL | ESQL | Elastic Detection Rules | KQL | Log Analysis | MITRE ATT&CK | Purple Team | SIEM | Sigma | Threat Intelligence | Threat modeling
Education
N/A
Related jobs
-
Senior Security Engineer, Threat Intelligence USD 144K-214KAI machine learning | APIs | Automation | Cloud Security | Data PipelinesBackground check | On-call rotation | Remote workSenior-level Full TimeRemote (United States | Canada) R21h ago
-
Senior Software Engineer - Data Security USD 179K-258KAnalytics | Authentication | Authorization | By Design | Data GovernanceSenior-level Full TimeRemote - Canada; Remote - USA R1d ago
-
Senior GRC Engineer CAD 116K-150KAI Governance | API Integration | AWS | Access Management | CI/CDAdoption Assistance | Extended health coverage | Internal mobility programs | Learning resources | Paid time offSenior-level Full TimeToronto (Flexible), Canada1d ago
-
Lead Security Engineer (Fraud) CAD 150K-220KAPI Security | AWS | CI/CD | Cloud Native | Cloudflare WAFFlexible working hours | Professional development stipend | Supplemental health insurance | Work from home reimbursementSenior-level Full TimeMontreal / Toronto2d ago
-
Senior Logging & Detection Engineer CAD 149K-202KAPI Integration | AWS | Activity logs | Audit Logs | AzureClioversary recognition program | Counseling benefit | Dental insurance | Flexible time off | Health benefitsSenior-level Full TimeRemote - ON, CAD, Canada R2d ago
-
Staff Product Security Engineer CAD 178K-228KAWS | Application Security | Authentication | Azure | CI/CDDental and vision coverage | Employee stock purchase plan | Flexible spending wallets | Health care coverage | Remote workSenior-level Full TimeRemote Canada R6d ago
-
AI Security | Cybersecurity | Executive Presentations | Program Management | Proposal ManagementProfessional training resources | Remote work support | Volunteer opportunities | Work-life balanceSenior-level Full TimeCA-ON-Home, Canada R6d ago
-
Senior Application Security Developer USD 166K-224KApplication Security | Application Security Testing | Architecture Review | Automated vulnerability scanning | CI/CDCounseling benefit | Dental insurance | Flexible time off | Health insurance | Hybrid work environmentSenior-level Full TimeRemote - Canada R7d ago
-
Product Security Engineer USD 93K-125KAWS | Application Security | Code review | DAST | Dependency Scanning401k retirement plan | Commuter and parking accounts | Dental insurance | Disability insurance | Emergency weather supportEntry-level Full TimeCanada R7d ago
-
Sr Software Engineer, AI Security Platform USD 130K-191KAWS | Automation | Azure | Batch Processing | Behavioral analyticsSenior-level Full TimeRemote Canada | Remote United States R8d ago
-
Staff Offensive Security Engineer CAD 191K-225KAWS | CI/CD | Docker | EDR | Exploit DevelopmentAncillary insurance | Catered meals | Commuter stipend | Flexible benefits spending account | Mental health supportSenior-level Full TimeToronto, Canada8d ago
-
Lead Cyber Security Engineer (Global Security) CAD 90K-140KAPI Integration | AWS | Azure | CI/CD | ConfluenceCareer growth opportunities | Coaching and development | Flexible benefits | Opportunity to work on challenging problems | Training programsSenior-level Full Time16 YORK ST:TORONTO, Canada9d ago
-
Cybersecurity Engineer CAD 93K-140KAccess Management | Anti-virus | Authentication | Content Filtering | CybersecurityMid-level Full TimeToronto, ON, Canada11d ago
-
Staff Security Engineer CAD 120K-175KAnsible | Container Security | DAST | Detection and Response | Development LifecycleAnnual well-being allowance | Commuter benefits | Donation-matching program | Employee assistance program | Equity packagesSenior-level Full TimeToronto (8 Spadina Ave)13d ago
-
Information Security Engineer / Ingénieur en Sécurité de l'Information | North America (EST) /Amérique du Nord (EST) CAD 105K-115KAWS | Azure | CASB | CCPA | CISRemote work flexibilitySenior-level Full TimeCanada R13d ago
-
AWS Security | AWS Security Groups | Activity logs | Application Firewall | Azure Activity LogsSenior-level Full TimeToronto, ON, Canada13d ago
-
ARM architecture | Attack Surface Enumeration | Attack surface | Black box testing | Black-boxCommunity Volunteering Program | Dental insurance | Family planning support | Flexible working | Holiday allowanceSenior-level Full TimeCAN Waterloo14d ago
-
Threat Detection Engineering Senior Associate CAD 84K-134KAmazon Web Services | Apache | ArcSight | Azure DevOps | Azure SentinelSenior-level Full TimeToronto - 18 York Street, Canada14d ago
-
CorpSec Security Engineer II CAD 136K-170KAWS | App review | CloudTrail | Device trust | GCPContinuing education benefits | Disability insurance | Employee stock purchase plan | Family-forming benefits | Health benefitsMid-level Full TimeBurnaby, British Columbia, Canada14d ago
-
Senior Security Detection Engineer (Global Security) CAD 81K-140KAWS | Azure | Case Development | GCP | Network SecurityCoaching and development opportunities | Comprehensive total rewards program | Dynamic collaborative team | Flexible work-life balance | Training opportunitiesSenior-level Full Time745 THURLOW ST:VANCOUVER, Canada14d ago
-
Senior-level Full TimeRemote Canada | Remote United States R14d ago
-
Senior Security Operations Engineer CAD 115K-125KAI DLP | API Security | APIs | Ansible | Application FirewallSenior-level Full TimeToronto - 100 Adelaide St W, …15d ago
-
API Security | Adversarial Machine Learning | Data leakage | Fine Tuning | ISO 27001Life insurance options | Mental health support | Private medical coverageSenior-level Full TimeVancouver, British Columbia, Canada16d ago
-
Cyber Security Entrepreneur in Residence CAD 110K-180KAWS | Access Management | Adversarial Testing | Cloud Security | Compliance ReadinessRemote workSenior-level Full TimeToronto18d ago
-
Cyber Security Entrepreneur in Residence USD 170K-300KAI Agent | AI agent security | Agent security | Application Security | AutomationRemote workSenior-level Full TimeUS or Canada18d ago