Senior Threat Detection Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Jobs via Dice ยท 14 hours ago

Senior Threat Detection Engineer

positionWashington, United States
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$163K/yr - $224K/yr
date8+ years exp

Salesforce is the #1 AI CRM, where humans with agents drive customer success together. As a Senior Threat Detection Engineer, you will take full ownership of a technical area, responsible for delivering research and features to achieve team goals while collaborating with teams across multiple geographies.

Computer Software

Responsibilities

Detecting attacks against Salesforce's infrastructure, products, employees, and customers
Collaborating with CSIRT and engineering teams to enhance detection effectiveness
Writing logic on security platforms to detect malicious activity, building attack simulation scenarios, and testing logic effectiveness
Working closely with the incident response team to improve alert reliability and quality
Leading projects end-to-end, owning a technical area, and delivering research and features
Engaging in security organization-wide initiatives and cross-team collaboration with multiple engineering teams

Qualification

Threat DetectionThreat HuntingSecurity Incident ResponseLog Correlation TechniquesCyber Security ExperienceSecurity FrameworksSIEM SystemsPublic Cloud SecuritySoft Skills

Required

8+ years of experience in Cyber Security, including at least 6 years of hands-on experience in Threat Detection, Threat Hunting, Security Incident Response, and managing significant security incidents and breaches
Expertise in developing and refining threat detection methodologies, leveraging security logs from various sources, including network infrastructure, endpoint devices, public and private cloud substrates, and SaaS
Strong proficiency in log correlation techniques to identify patterns and anomalies indicative of malicious activity
Expertise in constructing complex search queries using languages such as SPL, YARA, and other query languages to analyze large volumes of data
In-depth knowledge of fundamental security principles, common attack vectors, Tactics, Techniques, and Procedures (TTPs) used throughout the cyber kill chain, and relevant security frameworks such as the MITRE ATT&CK framework
Practical experience with a variety of security tools and technologies, including SIEM systems, EDR solutions, NDR tools, and SOAR platforms
Ability to handle and analyze large and complex datasets, identifying meaningful security insights and trends
Understanding data processing pipelines, performance considerations when querying large datasets, and synthesizing findings into actionable intelligence

Preferred

Hands-on experience with log aggregation/SIEM tools such as Splunk, Elastic (ELK), FLINK, Chronicle, etc
Experience with public cloud security, particularly AWS, Azure, or Google Cloud Platform
Undergraduate degree in Cyber Security, Computer Science, Information Technology, or similar fields
Experience working in a globally distributed team, leveraging documentation and asynchronous communications
Experience with automation platforms such as SOAR

Benefits

Time off programs
Medical
Dental
Vision
Mental health support
Paid parental leave
Life and disability insurance
401(k)
Employee stock purchasing program

Company

Jobs via Dice

twitter
company-logo
Welcome to Jobs via Dice, the go-to destination for discovering the tech jobs you want.
people-size0-1 employees
web-link
https://www.dice.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase