Remoote.app

Work from anywhere. Start here.

Free resume builderCompaniesLog in
Apply

Sr. Defender Engineer | Remote, USA

Posted about 1 month agoViewed

View full description

💎 Seniority level: Middle, 4+ years

📍 Location: United States

🏢 Company: Optiv_Careers

⏳ Experience: 4+ years

🪄 Skills: PythonSQLCybersecurityData AnalysisMicrosoft AzureCommunication SkillsAnalytical SkillsCollaborationCI/CDCustomer serviceRESTful APIsMentoringLinuxDevOpsDocumentationInterpersonal skillsProblem-solving skillsTeamworkJSONData modelingScripting

Requirements:
  • 4+ years of experience as a detection engineer, security engineer, security analyst, threat intelligence analyst, or related field
  • Knowledge of current cyber threats and how to detect them using SIEM and XDR technologies
  • Advanced/Expert knowledge of Defender Suites (XDR, Endpoint, O365, Identity, VM, Cloud Apps, etc.)
  • Currently holding Defender certifications (SC-100, SC-200)
  • Experience working with SIEM solutions (Splunk, Sentinel, LogRhythm, etc.)
  • Proven ability to code and script
  • Ability to effectively communicate, mentor and tutor
  • Detailed writing skills
  • Ability to build relationships with and influence other functional areas
  • Strong interpersonal skills
  • Ability to manage multiple tasks in parallel
  • Additional Endpoint technologies a plus (Crowdstrike, SentinelOne, PowerTech, Trend Micro etc.)
  • Relevant industry certifications, i.e. (GCTI, GCDA, GDAT, etc)
  • Hands-on experience with Linux and/or AIX operating systems.
Responsibilities:
  • Develop, test, and deploy actionable high fidelity XDR detections to enable a world class Managed Detection and Response team
  • Build and operate detection-as-code CI/CD pipelines
  • Code reviews and testing to ensure high quality and high fidelity detections
  • Threat research and threat hunting to identify emerging tactics, techniques, and procedures (TTPs) to build detection requirements using an intelligence driven approach
  • Collaborate with Security Analysts to create playbooks for triage and response for actionable high fidelity detections
  • Collaborate with SIEM architects to develop and define best practices for parsing data and normalizing data to a common event schema
  • Build and maintain utilities and tools to enable the managed services team to operate quickly and at a large scale
  • Develop and maintain processes and documentation
  • Refer potential add-on sales opportunities to either account managers or solutions engineers.
  • Maintain quality service by establishing and enforcing organization standards.
  • Maintain professional and technical knowledge by attending educational workshops; reviewing professional publications; establishing personal networks; participating in professional associations such as ISSA.
  • Obtain and maintain vendor certifications.
  • Complete administrative project tasks like time and expense entry, status reporting, and project completion reporting.
Apply