Detection Engineer
New Today
About the Role :
The CrowdStrike Managed Services team offers opportunities to expand your skill set through a wide variety of experiences building detection rules, tools, and infrastructure supporting Falcon Complete Next-Gen SIEM. As a Detection Engineer on the Falcon Complete team, you will be responsible for collaborating with internal CrowdStrike teams to create high fidelity detections based on both CrowdStrike and 3rd-party telemetry to enable the Falcon Complete Next-Gen MDR team. The ideal candidate will demonstrate high competency in technical skills aimed at delivering value for customers and providing a successful experience with Falcon Complete.
What You’ll Do :
Perform threat research and threat hunting to identify emerging tactics, techniques, and procedures (TTPs) to build detection requirements using an intelligence driven approach
Develop, test, and deploy actionable high fidelity CrowdStrike Next-Gen SIEM detection rules to enable a world class Managed Detection and Response team
Perform code reviews and testing to ensure high quality and high fidelity detection rules
Leverage CI/CD best practices and principles to deploy detection rule logic at scale
Collaborate with Security Analysts to create playbooks for triage and response for actionable high fidelity detections
Collaborate with SIEM architects to develop and define best practices for parsing data and normalizing data to a common event schema
Build and maintain utilities and tools to enable the managed services team to operate quickly and at a large scale
Develop and maintain processes and documentation
What You’ll Need :
Successful candidates will have experience in many of the following areas:
3+ years of experience as a detection engineer, security engineer, security analyst, threat intelligence analyst, or related field
Knowledge of current cyber threats and how to detect them using SIEM and relevant technologies
Relevant industry certifications (i.e. GCFA, GCDA, GCIH, etc.)
Experience with analyzing large datasets across variety of vendors
Experience working with SIEM solutions (LogScale, Splunk, SumoLogic, Sentinel, QRadar, LogRhythm, etc)
Proven ability to write code and leverage regular expressions
Participate in a Detection Engineer handler rotation
Attention to detail and effective communication skills
#LI-AC1
#LI-Remote
PandoLogic. Category:Technology, Keywords:Information Security Analyst, Location:Austin, TX-78703- Location:
- Austin
- Category:
- Other
We found some similar jobs based on your search
-
New Today
Lead Detection Engineer(remote)
-
Austin
Become a part of our caring community and help us put health first The Lead Detection Engineer position is responsible for building and curating custom cyber threat detection content for the Humana enterprise environment. This role works closely wit...
More Details -
-
New Today
Threat Detection Security Engineer, SIRT
-
Austin
Threat Detection Engineer Are you excited about advancing the state of Threat Detection at scale to mitigate the risk from an ever-evolving threat landscape impacting a diverse range of businesses? Amazon Stores Security's Threat Detection (TD) team...
More Details -
-
2 Days Old
Lead Detection Engineer(remote)
-
Austin, TX, United States
- Computer And Mathematical Occupations
Lead Detection Engineer Become a part of our caring community and help us put health first. The Lead Detection Engineer position is responsible for building and curating custom cyber threat detection content for the Humana enterprise environment. T...
More Details -
-
2 Days Old
Lead Detection Engineer(remote)
-
Austin, TX, United States
- Computer And Mathematical Occupations
Become a part of our caring community and help us put health first The Lead Detection Engineer position is responsible for building and curating custom cyber threat detection content for the Humana enterprise environment. This role works closely wit...
More Details -
-
2 Days Old
Security Engineer II, Customer Logistics Security (CLS) Detection Engineering
-
Austin, TX, United States
- Computer And Mathematical Occupations
Join Amazon's Customer Logistics Security team as a Systems Security Engineer supporting our critical Splunk infrastructure. In this role, you'll help protect Amazon's global operations through advanced SIEM management, enhancing our security monitor...
More Details -
-
2 Days Old
Senior Threat Detection Engineer
-
Austin, TX, United States
- Computer And Mathematical Occupations
About the Team The Cloud Security and Detection & Response team is responsible for identifying and addressing credible threats to our organization. Their work includes activities such as threat modeling, incident response, strengthening Miro's overa...
More Details -