Threat Detection Engineer
Tasks
- Administer Microsoft Sentinel SIEM
- Administer and optimize CrowdStrike Falcon
- Apply security best practices across security domains
- Architect deploy and operate Microsoft 365 security solutions
- Build tune and optimize Sentinel analytics rules and KQL queries
- Communicate risks incidents and recommendations to stakeholders
- Conduct root cause analysis
- Create security policies standards procedures and documentation
- Design security controls across cloud and SaaS
- Escalate security incidents and investigations
- Implement and manage Zscaler ZIA and ZPA
- Improve security controls continuously
- Lead security event remediation
- Mentor junior team members
- Partner with SOC for detection and response
- Perform threat hunting and detection engineering
- Support audits risk assessments and compliance initiatives
- Support zero trust access and secure connectivity
Perks/Benefits
Skills/Tech-stack
Access Management | Analytics rules | Automation | Cloud Security | Cloud apps | Compliance | Conditional Access | CrowdStrike Falcon | Cybersecurity | Data Connectors | Defender for Cloud Apps | Defender for Endpoint | Defender for Identity | Defender for Office 365 | Detection engineering | EDR | Entra ID | Governance Risk | Governance risk compliance | Identity & Access | Identity & Access Management | Identity Protection | Incident Response | KQL | Microsoft 365 | Microsoft Defender | Microsoft Defender for Cloud | Microsoft Defender for Cloud Apps | Microsoft Defender for Endpoint | Microsoft Defender for Identity | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Entra | Microsoft Entra ID | Microsoft Sentinel | Microsoft Sentinel Data Connectors | Network Security | Office 365 | Powershell | Python | Risk Management | Risk compliance | SaaS security | Security Audits | Security Engineering | Security analytics | Security monitoring | Segmentation | Threat hunting | Traffic inspection | Vulnerability Management | Workbooks | Zero Trust | Zscaler ZIA | Zscaler ZPA
Education
Related jobs
-
Sr Staff Cyber Security Engineer (AI) USD 145K-175KApplication Security | Azure OpenAI | CCPA | CIS Critical Security Controls | Cloud Security401k | Dental insurance | Discounts | Fully remote | Medical insuranceSenior-level Full TimeNew York, NEW YORK, United States R9h ago
-
Staff Production Engineer (Cloud Platform & Reliability – Machine Identity Security) - hybrid USD 181K-226KAKS | AWS | Ansible | Argo CD | AzureSenior-level Full TimeSanta Clara, California, United States R1d ago
-
Senior Production Engineer (Cloud Platform & Reliability – Machine Identity Security) - hybrid USD 155K-194KAKS | AWS | Ansible | ArgoCD | AzureDental insurance | Medical insurance | On-call compensation | Vision insuranceSenior-level Full TimeSanta Clara, California, United States R1d ago
-
Sr. Embedded Detection Analyst USD 170K-205KAI tools | Alert Correlation | Cause analysis | Data Analysis | Detection engineeringSenior-level Full TimeRemote - USA R1d ago
-
Software Engineer - Python INR 1200K-1600KAWS | Authentication | Authorization | CI/CD | DockerHealth insurance | Life insurance | Personal accident insuranceMid-level Full TimeBangalore, Karnataka, India (Hybrid) R1d ago
-
Software Engineer, GRC EUR 60K-88KAWS | AWS Bedrock | AWS Lambda | AWS Step Functions | AgileAnnual bonus program | Career development and growth | Dental plan | Hybrid work options | Income protectionMid-level Full TimeVirtual Office (Ireland) R1d ago
-
Senior Security Engineer USD 164K-228KAI-assisted coding | AI/ML | AI/ML Security | Access Control | Assisted coding401k match | Company holidays | Dental insurance | Employee assistance program | Employee stock purchase planSenior-level Full TimeUnited States | Remote R1d ago
-
Senior Security Engineer USD 160K-188KAPI Security | AWS | Application Security | Architecture Review | Authentication401k match | Charitable donation matching | Flexible paid time off | Home office setup stipend | Medical Dental Orthodontics Vision CoverageSenior-level Full TimeRemote - US R1d ago
-
Cyber Threat Detection & Response Engineer USD 100K-141KData analytics | Detection engineering | EDR | Endpoint detection | Incident Response401k match | Dental insurance | Discretionary time off | Life insurance | Long-term disabilityMid-level Full TimeRemote R1d ago
-
Information Security Engineer / Ingénieur en Sécurité de l'Information | North America (EST) /Amérique du Nord (EST) CAD 101K-138KAWS | Azure | CASB | CCPA | CISAdditional country based perks and benefits | Remote work flexibility | Stock grant opportunities | WeWork access optionalSenior-level Full TimeCanada R1d ago
-
Information Security Engineer | North America (EST) USD 148K-200KAWS | Azure | CASB | Data Loss Prevention | Data lossAdditional country based benefits | Optional WeWork access | Remote work flexibility | Stock grant opportunitiesSenior-level Full TimeUSA R1d ago
-
DevSecOps Engineer BRL 234K-295KAccess Control | Application Security Testing | Authentication | CI/CD | CheckovAdditional benefits and perks | Remote work flexibility | Stock grant opportunities | WeWork access optionalMid-level Full TimeBrazil R1d ago
-
DevSecOps Engineer EUR 41K-74KAccess Control | Application Security Testing | Authentication | CI/CD | CheckovOptional WeWork access | Remote work flexibility | Stock grant opportunitiesMid-level Full TimeEMEA R1d ago
-
Amazon Web Services | Asset Security | DCS | DNP3 | Detection SystemsRemote work | TravelMid-level Full TimeSão Paulo, São Paulo, BR R1d ago
-
Detection Engineer USD 82K-121KAWS | AWS Security | AWS Security Hub | AWS Security Lake | Amazon GuardDutyMid-level Full TimeRemote- United States R1d ago
-
Staff Product Security Engineer USD 170K-200KCI/CD | Container Security | Continuous Delivery | Continuous integration | DockerConference and training reimbursement | Employee assistance program | Flexible time off | LinkedIn Learning access | Remote workSenior-level Full TimeUnited States R1d ago
-
Infrastructure Security Engineer GBP 79K-106KAWS | Application Firewall | Bash | CI/CD | CloudflareApple equipment | ClassPass | Equity and career growth | Flexible work culture | Mandatory in office presence 4 days per weekMid-level Full TimeLondon R1d ago
-
Senior Security Engineer USD 140K-180KAdversary simulation | Application Security | Application Security Testing | Burp Suite | Code AnalysisRemote workSenior-level Full TimeRemote, U.S. R1d ago
-
Senior AI Security Content Engineer (Fixed Term) GBP 90K-110KAI Governance | AI Risk Management Framework | AI supply chain security | AWS | Adversarial Attacks401k matching | Company retreat | Enhanced parental leave | Flexible hours | Health insuranceSenior-level TemporaryLondon, United Kingdom R1d ago
-
Sr. Identity & Access Management (IAM) Engineer I (6527) USD 170K-201KADFS | Access Management | Active Directory | Agile | AuthenticationSenior-level Full TimeHybrid - Local to D.C. metro … R1d ago
-
Senior Software Engineer (Malaysia) INR 1250K-2900KAlgorithms | C# | Code review | JavaScript | Key-valueAnnual leave | Flexi benefits | Health screening reimbursement | Hybrid work model | Remote up to 2 days per weekSenior-level Full TimeKuala Lumpur, Federal Territory of Kuala … R1d ago
-
Senior IAM Engineer - Saviynt (REMOTE OR MA BASED) USD 116K-168KABAC | AWS IAM | Access Governance | Access Management | Access Request Approval401k match | Company-Paid Holidays | Flexible work arrangements | Medical, dental, vision, life, and disability insurance | On site medical wellness centerSenior-level Full TimeVirtual R1d ago
-
Software Engineer – Netwrix Directory Manager PLN 216K-309KAPI | AWS | Access Management | Automated testing | AzureCareer Growth and Advancement | Continuous learning and development | Flexible-hybrid work | Health benefitsExecutive-level Full TimeHybrid (Kraków, Lesser Poland Voivodeship, PL) R1d ago
-
Alternant.E Cybersecurite EUR 28K-33KAutomation Scripting | Cybersecurity | Firewall | Information security | Network SecurityDriving license support | Housing allowance | Meal vouchers | Participation bonus | School Supplies SupportEntry-level Full TimeLa Garenne Colombes, FR, 92250 R1d ago
-
DevOps & Security Engineer (100% Remote) EUR 70K-75KAWS | AWS Secrets | AWS Secrets Manager | Access Control | Access ManagementAccess to world-class infrastructure | Flexible culture | Growth opportunities | Impactful global projects | Remote-first work environmentMid-level Full TimeGermany - Remote R1d ago