Job Summary
A company is looking for a Detection Engineer responsible for developing and validating security detection rules and providing technical support during incidents.
Key Responsibilities
- Develop and validate new detection rules based on threat intelligence and incident reports
- Monitor and fine-tune rule performance to enhance detection accuracy and minimize false positives
- Provide technical support during security incidents and participate in client meetings for updates on rule changes
Required Qualifications
- 2-5+ years of related work experience preferred
- Experience with one or more SIEM and EDR platforms
- Strong understanding of common Tactics, Techniques, and Procedures (TTPs) and the current threat landscape
- Knowledge of incident response and threat intelligence
- Experience with log management systems and cyber security principles
Comments