Threat Detection Engineer
Tasks
- Administer Microsoft Sentinel SIEM
- Administer and optimize CrowdStrike Falcon
- Apply security best practices across security domains
- Architect deploy and operate Microsoft 365 security solutions
- Build tune and optimize Sentinel analytics rules and KQL queries
- Communicate risks incidents and recommendations to stakeholders
- Conduct root cause analysis
- Create security policies standards procedures and documentation
- Design security controls across cloud and SaaS
- Escalate security incidents and investigations
- Implement and manage Zscaler ZIA and ZPA
- Improve security controls continuously
- Lead security event remediation
- Mentor junior team members
- Partner with SOC for detection and response
- Perform threat hunting and detection engineering
- Support audits risk assessments and compliance initiatives
- Support zero trust access and secure connectivity
Perks/Benefits
Skills/Tech-stack
Access Management | Analytics rules | Automation | Cloud Security | Cloud apps | Compliance | Conditional Access | CrowdStrike Falcon | Cybersecurity | Data Connectors | Defender for Cloud Apps | Defender for Endpoint | Defender for Identity | Defender for Office 365 | Detection engineering | EDR | Entra ID | Governance Risk | Governance risk compliance | Identity & Access | Identity & Access Management | Identity Protection | Incident Response | KQL | Microsoft 365 | Microsoft Defender | Microsoft Defender for Cloud | Microsoft Defender for Cloud Apps | Microsoft Defender for Endpoint | Microsoft Defender for Identity | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Entra | Microsoft Entra ID | Microsoft Sentinel | Microsoft Sentinel Data Connectors | Network Security | Office 365 | Powershell | Python | Risk Management | Risk compliance | SaaS security | Security Audits | Security Engineering | Security analytics | Security monitoring | Segmentation | Threat hunting | Traffic inspection | Vulnerability Management | Workbooks | Zero Trust | Zscaler ZIA | Zscaler ZPA
Education
Related jobs
-
Security Engineer INR 3384K-4500KCI/CD | Chronicle | Detection rules | DevSecOps | DockerEmployee stock purchase plan | Health benefits | Paid time off | Parental leave | Retirement savingsSenior-level Full TimeIndia R1h ago
-
CMMC Security Engineer (US Hybrid) USD 120K-170K800-171 | AD Connect | Activity logs | Azure AD | Azure AD ConnectCompany paid training and certification | Dental and vision | Disability coverage | Health and wellness program | Life insuranceMid-level Full TimeRemote R9h ago
-
Senior Detection Engineer USD 192K-242KAWS | Azure | Cloud platform | Continuous Delivery | Continuous integrationEquity grant | Flexible work location | Remote workSenior-level Full TimeUnited States - Remote R9h ago
-
Senior Security Engineer, Incident Response GBP 91K-110KAWS | Access Control | Azure | Cloud Security | DFIRSenior-level Full TimeAmsterdam, Netherlands; Berlin, Germany; London, United … R10h ago
-
Sr Staff Cyber Security Engineer (AI) USD 145K-175KApplication Security | Azure OpenAI | CCPA | CIS Critical Security Controls | Cloud Security401k | Dental insurance | Discounts | Fully remote | Medical insuranceSenior-level Full TimeNew York, NEW YORK, United States R11h ago
-
Staff IAM Engineer, Sailpoint USD 115K-234KAPI | Access Control | Access Management | Access Policy | Access ReviewHybrid work modelSenior-level Full TimeRemote, US R12h ago
-
Lead Security Engineer USD 220K-260KAudit Logging | CMEK | Cloud key management | Compliance Management | DLP401k | Flexible spending account | Health insurance | Hybrid work | Office equipment allowanceSenior-level Full TimeMountain View, California, United States R12h ago
-
Senior CIAM Software Engineer CAD 150K-200KAPI Design | AWS | Access Control | Adaptive Authentication | Auth0Dental insurance | ESPP | Flexible spending accounts | Health insurance | Paid time offSenior-level Full TimeRemote Canada R12h ago
-
Senior CIAM Software Engineer USD 169K-240KAWS | AWS Cloud | Abuse detection | Access Control | AuthorizationDental and vision coverage | ESPP | Family forming expenses | Flexible spending wallets | Food stipendSenior-level Full TimeRemote US R12h ago
-
Enterprise IAM Software Engineer II CAD 125K-175KAPI Development | AWS | CI/CD | Debugging | GitHubDental and vision coverage | Employee stock purchase plan | Health care coverage | Paid time off | Remote work flexibilityMid-level Full TimeRemote Canada R15h ago
-
ASG IT & Security Engineer for Applied AI USD 150K-200KAI Governance | Access Control | Access Management | ChatGPT | ClaudeAnnual bonus | Employer Paid Benefits | Incentive pay for eligible roles | Learning and development stipendMid-level Full TimeRemote R15h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | Alert Tuning | Application Security | CI/CD | Container SecuritySenior-level Full TimeIndia, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | Application Telemetry | CI/CD | Data Exfiltration Detection | Data exfiltrationSenior-level Full TimeTürkiye, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | AWS Security | Alert Tuning | CI/CD | Container SecuritySenior-level Full TimeBrazil, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | Application Security | CI/CD | Cause analysis | Container SecuritySenior-level Full TimeMexico, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | CI/CD | Cause analysis | Container Security | Data Exfiltration DetectionSenior-level Full TimeChile, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | Alert Tuning | Application Telemetry | CI/CD | Cause analysisSenior-level Full TimeColombia, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAI Automation | AWS | Alert Tuning | Application Telemetry | CI/CDSenior-level Full TimeArgentina, Remote R16h ago
-
Senior Security Infrastructure Engineer USD 60K-114KAWS | CI/CD | Container Security | Data Exfiltration Detection | Data exfiltrationSenior-level Full TimeLatin America R16h ago
-
AWS | Application Security | Burp Suite | CWE Top 25 | Cloud ComputingAdoption Assistance | Bonuses | Certification completion bonus | Certification reimbursement | Referral bonusesMid-level Full TimeSão Paulo, Brazil R17h ago
-
Lead DevOps Engineer USD 157K-223KAWS | Ansible | ArgoCD | Artifact Repositories | ArtifactoryHybrid schedule | Remote workSenior-level Full TimeDenver, CO R18h ago
-
Lead DevOps Engineer USD 157K-223KAWS | Alerting | Ansible | Azure | CI/CDAgile team collaboration | Hybrid work model | Remote workSenior-level Full TimeSan Diego, CA R18h ago
-
Lead DevOps Engineer USD 157K-223KAWS | Ansible | Argo CD | Artifact Repositories | ArtifactoryHybrid work schedule | Remote work flexibilitySenior-level Full TimeWoburn, MA R18h ago
-
Lead DevOps Engineer USD 157K-223KAWS | Agile | Ansible | ArgoCD | Artifact RepositoriesHybrid work | On site security clearance access | Remote workSenior-level Full TimeArlington, VA R18h ago
-
Senior Security Engineer EUR 67K-84KCommand Center | Endpoint Security | Enterprise Posture Management | Exploit Development | GCPCo-working space access | Fitness plan | Health insurance | Life insurance | Paid vacationSenior-level Full TimeEstonia - Remote R19h ago