Security Engineer, Detection and Response jobs in United States
cer-icon
Apply on Employer Site
company-logo

Hampton North · 3 days ago

Security Engineer, Detection and Response

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$160K/yr - $200K/yr
date5+ years exp

Hampton North is seeking a Detection Engineer to own the full detection lifecycle within their security platform. The role involves building and maintaining detections, translating user behavior into logic, and collaborating with various teams to enhance detection coverage and efficacy.

Staffing & Recruiting
badNo H1Bnote
Hiring Manager
✨Ruby Murphy✨
linkedin

Responsibilities

Build and maintain detections across SIEMs, behavioral analytics platforms, and endpoint data pipelines
Translate attacker and anomalous user behavior (MITRE ATT&CK, insider risk patterns, compromised account indicators) into high-signal logic
Develop detection-as-code in Python, YAML, Sigma, or related frameworks
Engineer and normalize telemetry across endpoint, identity, SaaS, and network sources—especially high-volume behavioral data
Partner with Threat Intel, Red Team, and Customer Success teams to validate detection coverage and model real-world misuse cases
Drive continuous tuning to reduce false positives and improve behavioral baselines
Build automated test harnesses and CI pipelines to validate detection efficacy
Contribute to playbooks, automation, and broader SecOps response workflows
Produce observability around detection performance, coverage gaps, and behavioral drift

Qualification

Detection EngineeringBehavioral AnalyticsPythonSIEM platformsEndpoint TelemetryCommunication

Required

5+ years in Detection Engineering, Threat Research, SecOps, or similar roles
Strong experience writing detections for behavioral or endpoint analytics platforms (e.g., EDR, telemetry-rich agents)
Experience with SIEM / data platforms such as Splunk, Sentinel, Elastic, Chronicle, Panther, etc
Proficiency in Python or similar scripting languages
Experience working with extremely granular endpoint telemetry, identity events, and user behavior patterns
Solid understanding of attacker tradecraft, insider threat indicators, and misuse patterns beyond classic IOC-based detection
Comfort working in high-noise or high-context environments and improving signal quality
Strong communication: able to describe why a detection matters and how it protects the business

Benefits

Equity options

Company

Hampton North

twitter
company-logo
Hampton North is a Cyber Security specialist staffing firm.
dateFounded in 2022
location
West Hartford , Connecticut, US
people-size2-10 employees
web-link
https://www.hamptonnorth.com

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Spencer Adams
Partner & Recruiter
linkedin
leader-logo
Stuart Mitchell
Founder and Recruiter
linkedin
Company data provided by crunchbase