Job Summary
A company that provides a software platform for machine data has a current position open for a Remote Senior Detection Engineer.
Candidates will be responsible for the following:
- Using your deep expertise building correlation searches from scratch to detect cybersecurity threats
- Drawing from your industry expertise in understanding how an attacker would behave & translate it to custom security detection content
- Engaging with other teams to ensure detections are working as intended
Applicants must meet the following qualifications:
- 12+ years of experience as a SOC Analyst, Security Content Developer and/or Security Engineer
- Deep understanding of Splunk Data Models
- Ability to build and interpret Splunk Processing Language (SPL) fluidly
- Advanced Splunk Enterprise Security experience