Senior Detection Engineer

Strong experience in Endpoint (MDR) and one or more of the following functional areas: Cloud/SaaS, Identity, Email or SIEM Proven experience with automation and orchestration Strong analytical thought-process and critical thinking skills Experience using query languages and understanding syntax across EDR or other security platforms (SQL, K, Lucene, etc.) Experience creating and tuning detectors/rules using commonly known tools such as YARA, SIGMA, Snort, Splunk, Elastic, etc. Ability to work from Wednesday - Saturday from 5pm MST - 3am MST.

Analyze EDR telemetry, alerts, and log sources across several detection domains Publish threats for customers Research coverage opportunities then creating new detectors, and tune existing ones Improve the Detection Engineering workflow through orchestration & automation Provide mentorship to peers and communicate effectively Help lead projects to improve the quality of life for both the customer and the CIRT