Senior Threat Detection Engineer
Riyadh, Riyadh Province, Saudi Arabia
USD 100K-145K (estimate) Mid-level Full Time
Tasks
- Analyze logs and telemetry for IOCs
- Balance sensitivity and accuracy of detections
- Build and tune EDR and NDR detections
- Configure log sources parsing rules and event normalization in SIEM
- Convert threat hunting findings into detection use cases
- Design develop deploy SIEM detection use cases
- Develop maintain correlation rules and alerting logic
- Document tuning activities
- Enrich alerts with contextual data
- Establish thresholds baselines and behavioral analytics
- Integrate telemetry sources into SIEM
- Monitor SIEM performance and system health
- Onboard new data sources into SIEM
- Optimize detection strategies across endpoint and network
- Perform root cause analysis for noisy alerts
- Review enhance SIEM content
- Support threat hunting hypotheses and detections
- Translate threat intelligence into detection logic
- Tune alerts to reduce false positives
Perks/Benefits
- N/A
Skills/Tech-stack
Alert Tuning | Behavioral analytics | Correlation rules | Cyber Kill Chain | Detection engineering | EDR | Event Enrichment | Event normalization | False positive reduction | Kill Chain | Log Parsing | MITRE ATT&CK | NDR | QRadar | SIEM | Telemetry integration | Threat Intelligence | Threat hunting
Education
N/A
Regions
Countries
States
Cities
Related jobs
-
Antivirus | Bash | DLP | EDR | Email SecuritySenior-level Full TimeRiyadh, Riyadh Province, Saudi Arabia2d ago
-
AWS | AWS CloudWatch | Alerting | Audit Trail | AutomationMid-level Full TimeRiyadh, Riyadh Province, Saudi Arabia15d ago
-
Senior Cloud Security Engineer USD 112K-200KAWS | Bash | Cloud Architecture | Cloud Native | Cloud Native CLIAutonomy | Challenging goals | Competitive compensation | Mentoring | Multinational teamSenior-level Full TimeRiyadh, Riyadh Province, Saudi Arabia20d ago
-
Sales Engineer USD 218K-300KDetection methodologies | Incident Response | Linux CLI | Network Security | Networking protocolsMid-level Full TimeSaudi Arabia - Remote R20d ago
-
Google Cloud Security Engineer. USD 136K-200KBash | Cloud Security | DevSecOps | Encryption | FirewallAir Tickets | Attractive package | Family benefits | VisaMid-level Full TimeRiyadh, Riyadh Province, Saudi Arabia28d ago