Detections Engineer

BS or MS in Computer Science, Electrical Engineering, Computer Engineering, or equivalent Experience in intrusion detection Proficiency in software engineering principles using C/C++, Rust, Golang, and Python Experience with DevOps tools (git, github actions, cargo package manager, Linux operating systems, docker/kubernetes) Experience in embedded systems Experience analyzing, characterizing and decoding serial data busses Experience with developing or testing multi-layered protocol parser logic Experience in cyber security concepts or fields Experience in test driven development methodologies and practices Ability to efficiently multitask and accommodate evolving priorities A US Government Security Clearance

Understand how cyber threat actors could attack operational technology (OT) systems Develop cyber intrusion detection and prevention methodologies Identify and develop ways to detect anomalies in OT systems Assess and emulate a wide variety of attacks Translate attack techniques into technical detections Work with vulnerability researchers and cyber intel analysts to understand and predict threats Develop software modules for Shift5 products to detect anomalies Write software in C++/Rust/Golang/Python for detection modules, testbeds, and tools Work with cross-functional teams to build robust detection and prevention capabilities Work with QA and Test Engineers for end-to-end testing Distinguish between anomalous and benign traffic in serial bus data Perform investigations of real-world customer anomalies Design and deliver technical training, usage guides, and operational best practices Effectively communicate technical information about cyber threats Contribute to fundamental frameworks describing OT system threats Read technical documentation to understand data Document work for technical and non-technical audiences Collaborate with vulnerability researchers to develop detection methodologies for novel attacks