We make it easy to secure your cloud transformation. Get fast, secure, and direct access to apps without appliances.

Senior Detection Engineer

EngineerEngineerFull TimeRemoteTeam 5,001-10,000Since 2008H1B SponsorCompany Site LinkedIn

Location

United States

Posted

64 days ago

Salary

$119K - $140K / year

Bachelor DegreeEnglishCloudRealmSplunkSQL

Job Description

• Using Red Canary’s detection platform to analyze EDR telemetry, alerts, and log sources across several detection domains (Endpoint, Identity, SIEM, Cloud/SaaS, etc.) • Publishing threats for customers using concisely-written communication while effectively conveying key and important indicators • Researching coverage opportunities then creating new detectors, and tune existing ones. • Improving the Detection Engineering workflow through orchestration & automation • Providing mentorship to your peers and communicate effectively with others for efficient cross-team collaboration • Help lead projects to improve the quality of life for both the customer and the CIRT

Job Requirements

Strong experience in Endpoint (MDR) and one or more of the following functional areas: Cloud/SaaS, Identity, Email or SIEM
Proven experience with automation and orchestration to effectively handle an extreme volume of telemetry and logs in a timely and efficient manner
Strong analytical thought-process and critical thinking skills to translate disparate activity into the realm of threat analysis
Experience using query languages and understanding syntax across EDR or other security platforms (SQL, K, Lucene, etc.)
Experience creating and tuning detectors/rules using commonly known tools such as YARA, SIGMA, Snort, Splunk, Elastic, etc.
Ability to work from Sunday - Wednesday from 5pm MST - 3am MST.