Threat Detection Engineer
Tasks
- Collaborate with threat hunting and red purple teams
- Conduct incident triage and response
- Configure alert grouping and scoring
- Configure analyst incident workflows
- Deploy detection rules
- Design detection logic
- Develop detection rules
- Gather detection requirements
- Implement Detection-as-Code
- Maintain version control for detections
- Manage detection lifecycle
- Map detections to MITRE ATT&CK
- Optimize detection performance
- Participate in security operations rotations
- Perform detection coverage analysis
- Set up CI/CD pipelines
- Suppress false positives
- Test detection rules
- Tune alerts to reduce noise
Perks/Benefits
- Employee discounts
- Employee-led networks
- Flexible policies
- Hybrid work model
- Inclusive parental leave
- Learning and development programs
- On-site facilities
- Wellbeing support services
Skills/Tech-stack
Alert Tuning | CI/CD | Cortex XSIAM | Defender XDR | Detection engineering | EDR | False Positive | False positive management | Incident Response | Log Analysis | MITRE ATT&CK | Microsoft Defender | Microsoft Defender XDR | Microsoft Sentinel | Operations Center | Rule authoring | SIEM | Security Operations Center | Security operations | Threat Intelligence | Triage workflows | Version control
Education
N/A
Regions
Countries
States
Cities
Related jobs
-
Senior Security Engineer - Detection & Response AUD 127K-147KAWS | Alert triage | Anomaly Detection | Ansible | AzureFlexible leave | Hybrid work | Parental leave | Remote work flexibilitySenior-level Full TimeMelbourne, VIC, Australia R1d ago
-
Senior Security Engineer - Detection & Response AUD 126K-142KAWS | Alert triage | Anomaly Detection | Ansible | AutomationEquity packages | Flexible leave options | Hybrid work | On-call rotation | Parental leaveSenior-level Full TimeSydney, Australia R1d ago
-
Presales Engineer - Cyber Security AUD 120K-130KCloud Security | Cyber Security | EDR | Email Security | Endpoint SecurityChoice of IT equipment | Discounts and benefits | Hybrid working | Team events | Training and developmentSenior-level Full TimeAustralia - Remote R8d ago
-
Concierge Security Engineer 3 AUD 93K-256KActive Directory | Antivirus | Attack Simulation | Authentication | BashComprehensive private benefits plan | Employee assistance program | Equity | Fertility support | Flexible time offMid-level Full TimeRemote - AUS - Western Australia R9d ago
-
Senior Pre-Sales Solution Engineer - APAC AUD 146K-185KAccess Management | Attack scenarios | Behavior analytics | CASB | Cloud PlatformsBuild lab environment | Create enablement videos | Develop technical collateral | Professional development courses | Travel within regionSenior-level Full TimeAustralia - Remote R9d ago
-
Senior-level Full TimeCanberra, Australia R12d ago
-
Security Engineer (AU East) - Remote AUD 120K-180KAutomation | Cloud Security | CrowdStrike | Detection engineering | EDREmployee stock options | Learning and development opportunities | Parental leave | Remote work | WFH office expense budgetMid-level Full TimeSydney, New South Wales 2000, Australia R13d ago
-
AWS | Access Management | Automation | CI/CD | Cloud ArchitectureEmployee networks | Great Place to Work certification | Paid adoption leave | Paid parental leave | Professional development opportunitiesSenior-level Full TimeAUS WA Remote, Australia R19d ago
-
Sr. Engineer II - EPICS, NG-SIEM (Hybrid, Sydney) AUD 110K-140KBackpressure | Bash | C++ | CI/CD | Consumer groupsAdoption leave | Competitive vacation and holidays | Employee networks | Great Place to Work certified | Hybrid workMid-level Full TimeSydney, Australia R19d ago
-
Access Management | Amazon Web Services | Cloud Security | Identity and Access Management | Identity and accessPart-time flexibility | Remote work | Work experience letterEntry-level Full TimeMelbourne, Victoria, Australia R27d ago
-
Hybrid Systems Engineer AUD 70K-97KAD Connect | Active Directory | Azure AD | Azure AD Connect | Azure ResourceFlexible working options | Paid parental leave | Paid volunteering days | Professional development reimbursements | Retail discountsSenior-level Full TimeCanberra, ACT, AU R29d ago
-
Security SOC Analyst (AU West) - Remote AUD 120K-180KCloud Security | Conditional Access | CrowdStrike | Dark Web | EDRAnnual global gathering | Egg freezing subsidy | Employee share options | Learning and development | Parental leaveMid-level Full TimeEast Perth, Western Australia 6004, Australia R1mo ago
-
Security SOC Analyst - Remote AUD 120K-180KAccess Management | Cloud Security | Conditional Access | Credential Monitoring | CrowdStrikeESOP | Flexible schedule | Learning and development opportunities | Parental leave | Remote workMid-level Full TimeSydney, New South Wales 2000, Australia R1mo ago
-
Security SOC Analyst (AU East) - Remote AUD 120K-180KAccess Management | Cloud Security | Conditional Access | CrowdStrike | EDREmployee share options | Learning and development opportunities | Parental leave | Remote work flexibility | WFH office expense budgetMid-level Full TimeSydney, New South Wales 2000, Australia R1mo ago
-
Senior CSOC Analyst (Japanese & English speaking) AUD 160K-190KApache | Application Firewall | Application Security | Cloud Security | CsharpSenior-level Full TimeAustralia (Remote) R1mo ago
-
AI Security | By Design | Code review | Data extraction | Detection engineeringEquity packages | Flexible leave | Parental leave | Wellbeing allowanceSenior-level Full TimeSydney, Australia R1mo ago
-
Cyber Defense Analyst AUD 100K-140KAI Assisted Triage | Audit trails | Behavior Analysis | CSPM | Chain of CustodyContinual learning culture | Flexible work environment | On-call support rotationMid-level Full TimeRemote Australia R1mo ago