Be an early applicantLess than 25 applicants

Company

Pondurance · 4 hours ago

Senior Detection Engineer

United States

Full-time

Remote

Senior Level

5+ years exp

Maximize your interview chances

Cloud SecurityCompliance

Insider Connection @Pondurance

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Oversee/advise in the deployment and tuning of security tools and technologies.

Regularly assess the readiness and capabilities of team projects and tasks, providing appropriate support, guidance, or training as needed.

Build new alerting techniques from an ever growing list of data sources, as well as improve existing alerts.

Conduct in-depth research and analysis of emerging cyber threats, attack vectors, and vulnerabilities to proactively identify potential risks.

Stay current with the latest threat landscape and integrate threat intelligence data into detection mechanisms.

Coach and mentor junior detection engineers, provide oversight to junior team members to ensure timely and successful task completion, fostering an environment of continuous learning and improvement.

Work closely with SOC management and analysts to improve alerting workflow.

Improve efficacy of telemetry collection and threat detection rules.

Foster cross functional relationships (kumbaya) with other department engineers to align goals and transfer knowledge.

Contribute to the creation of documents, reports, technical advisories, and whitepapers for internal and external stakeholders.

Participate in sprint demo/planning and other team or project meetings.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Threat detection experienceData query experienceSIEM / SOAR knowledgeLinux experienceWindows experienceCloud monitoringPython programmingThreat hunting toolsNetwork protocols knowledgeVulnerability assessmentTechnical thinkingRelevant certifications

Required

5+ years experience in threat detection

Experience with tools used for threat hunting and knowledge of various attack vectors is necessary

Strong understanding of threat landscapes, threat intelligence, and threat hunting methodologies

Strong understanding of cyber threats, attack methodologies, and vulnerability assessment

Strong understanding of network protocols, operating systems and security technologies

Excellent communication skills, both verbal and written

Ability to work efficiently both independently and as part of a team

Analytical Thinking: Break down the fundamental components of a problem or situation, examine the relationship between them, verify all pertinent facts and draw an appropriate conclusion

Applied Technical Thinking: Able to apply specialized, theoretical knowledge to efficient operational uses

Multitasking: Able to multitask effectively and shift focus easily and rapidly from one task to another

Advanced Data Query Experience: Must be able to write and transform queries from one language to another

Intermediate Linux Experience: Must know how to operate on a Linux CLI

Intermediate Windows Experience: Logging / Log Analysis / Log Alerting

Intermediate SIEM / SOAR Knowledge: Be able to effectively use SIEM / SOAR platforms to build queries, alerts, actions, etc.

Cloud application logs/monitoring