Saviynt is building a next-generation Agentic Security Operations Center (SOC) designed for the AI era, seeking a SOC Detection Engineer - Cloud and AI Automation to design, build, and optimize detection capabilities across cloud-native security stack.

Requirements

Bachelor's degree in Computer Science, Information Security, Data Science, or a related field.
8-12 years of experience in cybersecurity with at least 4+ years focused on detection engineering, threat detection, or security analytics.
Strong Cloud Security Detection Skills: Deep, hands-on experience building detections for at least one major cloud provider (AWS, Azure, or GCP), including native security services and log sources.
AI/ML Security Experience: Practical experience applying machine learning, anomaly detection, or AI-powered tools to security use cases.
Detection Engineering Expertise: Proven track record of creating high-quality detection content using SIEM platforms (Splunk, Azure Sentinel, Chronicle), EDR solutions (CrowdStrike, Microsoft Defender), and cloud security tools.
Automation & Scripting Proficiency: Strong programming skills in Python (required), with experience in PowerShell or Bash.
Technical Depth: Hands-on experience with SOAR platforms, detection-as-code frameworks, log analysis, and data correlation techniques.
MITRE ATT&CK Mastery: Expert-level understanding of the MITRE ATT&CK framework and its application to detection engineering and threat modeling.
Analytical Mindset: Strong problem-solving skills with the ability to analyze complex data sets, identify patterns, and translate findings into detection logic.

Benefits

Paid Time Off
401k Matching
Retirement Plan
Relocation Assistance

Requirements

Bachelor's degree in Computer Science, Information Security, Data Science, or a related field.

8-12 years of experience in cybersecurity with at least 4+ years focused on detection engineering, threat detection, or security analytics.

Strong Cloud Security Detection Skills: Deep, hands-on experience building detections for at least one major cloud provider (AWS, Azure, or GCP), including native security services and log sources.

AI/ML Security Experience: Practical experience applying machine learning, anomaly detection, or AI-powered tools to security use cases.

Detection Engineering Expertise: Proven track record of creating high-quality detection content using SIEM platforms (Splunk, Azure Sentinel, Chronicle), EDR solutions (CrowdStrike, Microsoft Defender), and cloud security tools.

Automation & Scripting Proficiency: Strong programming skills in Python (required), with experience in PowerShell or Bash.

Technical Depth: Hands-on experience with SOAR platforms, detection-as-code frameworks, log analysis, and data correlation techniques.

MITRE ATT&CK Mastery: Expert-level understanding of the MITRE ATT&CK framework and its application to detection engineering and threat modeling.

Analytical Mindset: Strong problem-solving skills with the ability to analyze complex data sets, identify patterns, and translate findings into detection logic.

SOC Detection Engineer - Cloud and AI Automation

About the Company

Job Description

Requirements

Benefits

Similar Jobs

SOC Detection Engineer - Cloud and AI Automation

L2 SOC Analyst

AI Threat Detection Engineer, Senior Specialist

SOC Detection Engineer - Cloud and AI Automation

About the Company

Job Description

Requirements

Benefits

Similar Jobs

SOC Detection Engineer - Cloud and AI Automation

L2 SOC Analyst

AI Threat Detection Engineer, Senior Specialist

Job Details

About Saviynt