Senior Detection Engineer- Cloud Security

Senior Detection Engineer- Cloud Security

Vacancy expired!

job summary:

This position is within the Information Security Department, on the Cyber Security Operations Center. As a member of the CSOC Team, a candidate can be expected to utilize his/her technical expertise to create detection logic to identify prioritized threats using logs and security telemetry. The ideal candidate can dissect an adversary TTP and identify the logs and technologies required to identify that behavior in the environment. In addition, this candidate will focus on supporting, automating, and enhancing the threat detection engineering lifecycle to advance the in-house detection and response capabilities.



location: Arlington, Virginia

job type: Contract

salary: $80.00 - 81.25 per hour

work hours: 8am to 4pm

education: Bachelors



responsibilities:

• Experience crafting logic that detects anomalous in user, network, host, or cloud activity in a high-fidelity manner.
• Hands-on technical expertise in building scripts, tools, or methodologies that enhance threat detection and incident response capabilities. (Preferably SPL, SQL, and Python)
• Ability to identify threats and adversaries by applying logic to logs and security telemetry.
• Knowledge of industry recognized security and analysis frameworks (Mitre ATT&CK, Kill Chain, NIST Incident Response, CIS, etc.)
• Prior offensive security experience i.e. Red Team, Pen Testing, Adversary Emulation
• Researching, developing, operationalizing, evaluating, and improving defensive tactics, techniques, and procedures (TTPs) for detecting and responding to modern cyber threats, including development in python.
• Participate in strategic development, implementation and execution of Tactics, Techniques and Procedures (TTPs)
• Defensive control engineering across defensive platforms for example: SIEM, EDR, IPS, SOAR, DLP, cloud, Network detection and prevention.
• Experience in applying detection and response concepts to On-Premise and Cloud environments. (AWS, Azure, GCP)

qualifications:

• Experience level: Experienced
• Minimum 7 years of experience
• Education: Bachelors

skills:

• SECURITY ENGINEER
• SECURITY
• Network Security

For certain assignments, Covid-19 vaccination and/or testing may be required by Randstad's client or applicable federal mandate, subject to approved medical or religious accommodations. Carefully review the job posting for details on vaccine/testing requirements or ask your Randstad representative for more information.



Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.