39 Detection Engineering Jobs

Overview Working at Atlassian Atlassians can choose where they work whether in an office, from home, or a combination of the two. That way, Atlassians have more control over supporting their family, personal goals, and other priorities. We can hire people in any country where we have a legal entity. Interviews and onboarding are conducted virtually, a part of being a distributed-first company. Responsibilities Overview As a Senior Product Security Engineer, Cloud Security at Atlassian, you will play a key role in securing our cloud platforms and products. You'll work closely with engineering teams to design, implement, and improve security controls, drive secure-by-default practices, and hel...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat landscape. Through powerful insights and managed services that simplify complexity, we enable businesses to operate with resilience, grow with confidence, and proactively manage to secure achievements. Position Summary Level: LeadSolution Advisor Work you'll do: As a Senior Consultant, you would be responsible for architecting, implementing, and optimizing Palo Alto Networks XSIAM solutions, leading advanced detection and automation projects, and advising clients on ...

Role Overview: As a Technical Manager in (MDR) Services / Security Operations Centre (SOC) Manager at Netenrich, you will be responsible for leading a team in safeguarding customers" information assets. Your role will involve overseeing cybersecurity Data Engineering, Detection Engineering, Response Engineering, incident response, and team management. You will need to have a proven track record in effectively managing MDR services or SOC operations and experience with advanced security technologies like SIEM, SOAR, EDR, and other tools. Key Responsibilities: - Oversee the monitoring, detection, analysis, and response to security incidents and threats in real-time. - Utilize advanced security...

As the Data Security Program Lead at Syneos Health, your role is crucial in safeguarding the security of data by collaborating with cybersecurity program leads. Your responsibilities include: - Identifying internal and external threats to data security, as well as internal risks related to potential weaknesses in business processes and technologies. - Leading and conducting detection engineering activities to effectively address evolving risks and changes in critical asset landscape. - Triage data security alerts and coordinate with internal and external stakeholders for investigations. - Acting as a subject matter expert for senior stakeholders and team members. - Providing strong technical...

Overview Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered ...

As a Cybersecurity Implementation Engineer with a minimum of 2 years of relevant experience, specializing in customer parser development, Yara rules creation, playbook implementation, and data ingestion techniques, you will be involved in designing and implementing cutting-edge cybersecurity solutions while collaborating with a team of skilled professionals. - Develop custom parsers to extract and normalize data from various sources - Design and maintain Yara rules for threat detection - Create playbook automation for incident response - Implement data ingestion pipelines for analyzing security data - Work closely with cross-functional teams to understand customer requirements - Identify eme...

Overview Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered ...

About The Job At Arctic Wolf, we're not just navigating the cybersecurity landscape - we're redefining it. Our global team of dedicated Pack members is driving innovation and setting new industry standards every day. Our impact speaks for itself: we've earned recognition on the Forbes Cloud 100, CNBC Disruptor 50, Fortune Future 50, and Fortune Cyber 60 lists, and we recently took home the 2024 CRN Products of the Year award. We're proud to be named a Leader in the IDC MarketScape for Worldwide Managed Detection and Response Services and earning a Customers Choice distinction from Gartner Peer Insights . Our Aurora Platform also received CRN's Products of the Year award in the inaugural Secu...

As a Security Researcher, your role will involve the following key responsibilities: - Conduct security research and threat modeling, including investigating emerging TTPs, business-logic abuse patterns, and identity/OAuth attack paths. - Develop and maintain adversary playbooks aligned with MITRE ATT&CK framework and drive coverage roadmaps. - Implement detection engineering by creating high-quality detections using tools such as Sigma, KQL, SPL, OSQuery, and eBPF, versioned as code with CI/CD practices. - Instrument cloud/SaaS telemetry pipelines and optimize noise reduction through tuning, suppression, and risk scoring. - Utilize AI-assisted analytics for anomaly detection, clustering, an...

As a hands-on Product Leader, your role will involve driving the strategy, design, and scale of an AI-powered threat investigation and response platform. You will be responsible for leading product strategy to automate investigations and response by enabling AI to consume detections, threat signals, and analyst feedback. Your tasks will also include designing and scaling content frameworks such as YAML, Sigma, and JSON to transform SOC workflows into modular, reusable playbooks. Moreover, you will operationalize CI/CD pipelines for continuous delivery of investigation playbooks and enrichment workflows. Collaboration with engineering and threat teams to integrate signals from various sources...

Job Summary: Seeking a Senior Staff Engineer with 1012 years of hands-on experience. Responsible for technically leading and driving complex detection engineering initiatives across the organization. Requires strong leadership, a deep technical foundation in detections, and a passion for delivering best-in-class detections. Responsible for building and optimizing detection content and working on the roadmap to build new content. Primary Responsibilities: Technically lead and drive Content Engineering projects (Detection Engineering) across cloud and on-prem environments. Collaborate with product, analytics, and business teams to define and prioritize detection engineering initiatives. Evalua...

Job Summary: We are seeking a Senior Staff Engineer to lead complex detection engineering initiatives across cloud and on-prem environments. The role demands strong technical leadership, expertise in cybersecurity threats, and experience building best-in-class detection content. The hire will mentor junior engineers, optimize detection capabilities, and drive the roadmap for innovative detection solutions. Primary Responsibilities: Lead and drive detection engineering projects across cloud and on-prem environments. Collaborate with product, analytics, and business teams to define and prioritize detection initiatives. Evaluate and integrate technologies to enhance detection content developmen...

Description: Senior Consultant responsible for designing, implementing, and optimizing Google SecOps SIEM and SOAR solutions, leading complex integrations, and advising clients on advanced detection, automation, and response strategies. Responsibilities: Lead the design and deployment of Google SecOps SIEM and SOAR solutions for complex client environments. Develop advanced detection rules, custom parsers, and SOAR playbooks to address sophisticated threats. Integrate diverse log sources and validate data quality, normalization, and enrichment. Advise clients on SIEM/SOAR best practices, use case development, and automation opportunities. Troubleshoot and optimize detection logic, integratio...

About Lowe's Lowe's is a FORTUNE 100 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe's operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe's supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com. Lowe's India, the Global Capability Center of Lowe's Companies Inc., is a hub f...

You will be joining the Defender Experts (DEX) Research team within Microsoft Security, dedicated to advancing the company's threat protection strategy. As a Principal Threat Researcher, you will play a crucial role in researching and combating emerging cloud-based threats impacting both Microsoft and third-party security products. Your work will involve collaborating with a team of experts to develop innovative solutions that enhance threat detection and response capabilities within Microsoft Sentinel, contributing to the protection of enterprises worldwide. - Lead and execute advanced research on emerging cloud-based threats affecting Microsoft and third-party security products across dive...

Company Overview With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we're only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieve Read on. At UKG, you get more than just a job. You get to work with purpose. Our team of U Krewers are on a mission to inspire every organization to become a great place to work through our award-winning HR technology built for all. Here, we know that you're more than your work. That's why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose a...

Working at Atlassian Atlassians can choose where they work - whether in an office, from home, or a combination of the two. That way, Atlassians have more control over supporting their family, personal goals, and other priorities. We can hire people in any country where we have a legal entity. Interviews and onboarding are conducted virtually, a part of being a distributed-first company. Overview As a Senior Product Security Engineer, Cloud Security at Atlassian, you will play a key role in securing our cloud platforms and products. You'll work closely with engineering teams to design, implement, and improve security controls, drive secure-by-default practices, and help scale security across ...

Own threat detection, response, and hardening across cloud and endpoint estates. Design/operate SIEM/XDR/SOAR with detection engineering mapped to MITRE ATT&CK, and automate triage using GenAI for alert summarisation, enrichment, and knowledge search. Build Sigma rules, integrate EDR/telemetry (CrowdStrike, Defender, Sentinel/Splunk/Chronicle), and run purple-team exercises to close gaps. Champion Zero Trust, secrets hygiene, and incident runbooks with AI-assisted updates. Measure MTTA/MTTR, detection coverage, and control efficacy. Keywords: SIEM/XDR/SOAR operations and rule tuning (Sentinel/Splunk/Chronicle + EDR)Detection engineering mapped to ATT&CK Sigma/YARA authoring GenAI for alert t...

You will be responsible for leading a team as a Technical Account Manager in (MDR) Services / Security Operations Centre (SOC) Manager to safeguard customers" information assets. Your role will involve overseeing incident detection and response, utilizing advanced security technologies, coordinating with stakeholders, developing incident response plans, and leading and managing a team of security analysts and incident responders. Additionally, you will need to stay updated on cybersecurity threats, leverage threat intelligence for proactive identification, deploy cutting-edge security technologies, ensure compliance, and provide regular reports and insights to senior management. **Key Respon...

As a Data Security Program Lead at Syneos Health, your role will involve collaborating with cybersecurity program leads to identify internal and external threats to data security. You will also be responsible for leading and conducting detection engineering activities to address evolving risks and changing critical asset landscapes. Your duties will include triaging data security alerts, coordinating investigations with internal and external stakeholders, and acting as a subject matter expert to senior stakeholders and team members. Additionally, you will provide strong technical leadership and advice on relevant topics such as DLP, Insider Risk, Encryption, etc., in Data Security projects. ...

About The Job At Arctic Wolf, we're not just navigating the cybersecurity landscape - we're redefining it. Our global team of dedicated Pack members is driving innovation and setting new industry standards every day. Our impact speaks for itself: we've earned recognition on the Forbes Cloud 100, CNBC Disruptor 50, Fortune Future 50, and Fortune Cyber 60 lists, and we recently took home the 2024 CRN Products of the Year award. We're proud to be named a Leader in the IDC MarketScape for Worldwide Managed Detection and Response Services and earning a Customers Choice distinction from Gartner Peer Insights . Our Aurora Platform also received CRN's Products of the Year award in the inaugural Secu...

Job Description: Roles & Responsibilities: The Individual in this role will Review Front Door and Jira documentation submitted to and created by the Algorithm Development team Work with Focus Area Lead to analyze data feeds and provide feedback to STORM platform team regarding feed readiness. Document and capture feed information as part of feed onboarding process Working with Focus Area Lead based on Work Plan, research threat scenarios determine data sets required, develop algorithms for threat detection. Testing and onboarding alarms via team's processes. Grow knowledge of CyberSecurity. Team processes, and Systems. Required Skills: Over 8 years experience in Detection Engineering & Algor...

As a Cybersecurity Implementation Engineer with at least 2 years of relevant experience, your role will involve specializing in customer parser development, Yara rules creation, playbook implementation, and data ingestion techniques. You will collaborate with a team of skilled professionals to design and implement cutting-edge cybersecurity solutions. Your key responsibilities will include: - Developing custom parsers to extract and normalize data from various sources - Designing and maintaining Yara rules for threat detection - Creating playbook automation for incident response - Implementing data ingestion pipelines for analyzing security data - Working closely with cross-functional teams ...

Role Overview: As a Senior Threat Researcher in the Defender Experts (DEX) Research team at Microsoft Security, you will play a crucial role in advancing cloud security and protecting customers from advanced cyberattacks. You will collaborate with a team of experts to develop strategies and models that enhance threat detection and response capabilities within Microsoft Sentinel, contributing to real-time protections for enterprises worldwide. Key Responsibilities: - Lead and execute advanced research on emerging cloud-based threats affecting Microsoft and third-party security products in diverse cloud environments. - Develop and refine detection and response strategies using major SIEM platf...

Role Overview: You will be joining the Defender Experts (DEX) Research team within Microsoft Security, whose mission is to protect customers from advanced cyberattacks by transforming raw signals into intelligence. As a Threat Researcher, you will collaborate with researchers, analysts, and detection engineers to advance managed Sentinel expertise and drive research on emerging cloud threats impacting both Microsoft and third-party products. Your work will directly contribute to developing real-time protections for enterprises worldwide and enhancing threat detection and response capabilities within Microsoft Sentinel. This role offers a unique opportunity to work at scale, tackle complex cl...