JSOC - Senior Detection Engineer

We are seeking a Senior Detection Engineer to join our team. The ideal candidate will have 5+ years of experience in detection engineering, security operations, or threat analysis in an enterprise environment. The role will involve owning the quality and effectiveness of the detection portfolio, authoring and testing detection rules, and collaborating with internal customers and vendor support teams.

Requirements

• 5+ years of relevant experience in detection engineering, security operations, or threat analysis in an enterprise environment
• Experience authoring and deploying detection rules using Elastic Detection Rules (KQL, EQL, ES|QL)
• Practical experience with MITRE ATT&CK framework for detection mapping and coverage analysis
• Experience tuning detection logic and reducing false positive rates in production environments
• Experience with SIGMA rule authoring and cross-platform detection development
• Experience conducting purple team exercises and validating detection effectiveness
• Strong log analysis and data exploration skills for identifying detection gaps and anomalies
• Knowledge of threat modeling methodologies and detection requirement development
• Knowledge of alert fatigue reduction strategies and signal-to-noise optimization
• Knowledge of SIEM platform architecture, data pipelines, and detection rule deployment workflows
• Experience developing and maintaining large-scale detection portfolios
• Experience with threat intelligence integration into detection workflows

Benefits

• Health & wellbeing resources and programs
• Paid vacation, personal, and sick days for work-life balance
• Competitive compensation and benefits packages
• Work-life balance in a hybrid environment with at least 3 days in office
• Career growth and development opportunities
• Opportunities to contribute to community causes
• Work with diverse team members in an inclusive and collaborative environment