Lead Security Content Engineer
Foster City, CA
Exabeam
The Exabeam Security Management Platform provides end-to-end detection, User and Entity Behavioral Analytics, and SOAR.Exabeam is a global cybersecurity leader that delivers AI-driven security operations. The company was the first to put AI and machine learning in its products to deliver behavioral analytics on top of security information and event management (SIEM). Today, the Exabeam Security Operations Platform includes cloud-scale security log management and SIEM, powerful behavioral analytics, and automated threat detection, investigation and response (TDIR). Its cloud-native product portfolio helps organizations detect threats, defend against cyberattacks, and defeat adversaries. Exabeam learns normal behavior and automatically detects risky or suspicious activity so security teams can take action for faster, more complete response and repeatable security outcomes.
Detect. Defend. Defeat.™ Learn how at www.exabeam.com.
You will be embedded in our Security Content Engineering group and work closely with seasoned Enterprise IT security experts and the field organization in supporting the customer requests. As a Security Content Engineer you will be in charge of analyzing the log activity that IT operations generate, and decide how it can be utilized for detection. You will be creating the regular expressions to fetch useful information from the logs which is the foundation of the entire Exabeam information model and be responsible for constantly broadening support for devices and SIEMs.
Responsibilities:
- Analyze logs from enterprise IT devices and create parser configurations to extract meaningful information
- Troubleshoot machine learning models and detection rules to ensure intended security use case is implemented
- Work with the field organization to understand and resolve customer issues in a timely manner
- Demonstrate the ability to quickly learn and implement security use cases through ingestion and detection pipeline
- Approach any problem assigned with a can-do attitude and willingness to work as a team to accomplish goals
- Develop testing process to ensure quality is maintained
- Develop threat detection content roadmap and drive monthly delivery of new threat detection capabilities
Requirements:
- University degree or equivalent experience (BS CS is ideal)
- 3 to 7 years of experience in development. Preferably in security content space.
- Knowledge of programming and scripting languages such as Python, Scala, Java, Perl or Shell
- Advanced understanding of security threat detection
- Orientation to details and problem solving skills
- Experience with regular expressions is a plus
- Knowledge of the MITRE attack framework
- Experience developing detection content within a SIEM
- Experience with both red and blue teams
- Ability to understand threat landscape and attack lifecycle
- Ability to analyze
Why Exabeam:
- Medical, Dental, Vision benefits
- FSA/HSA options
- Generous PTO and Holidays
- Parental leave
Base Pay Range: Bay Area Only
$160,000 - $200,000
- Range is reflective of base pay only
- Does not include variable pay
- Base pay is dependent on experience and may vary based on geography
Exabeam is privately funded by Blue Owl Capital, Lightspeed Venture Partners, Cisco Investments, Norwest Venture Partners, Acrew Capital, Icon Ventures, and investor Shlomo Kramer. For more information visit https://www.exabeam.com or follow us on LinkedIn and Twitter.
In connection with your application and communications with Exabeam, we will have access to some of your personal information. We have technical and organizational measures in place to ensure this information is protected. For more information about how we use and/or protect your personal information, including the categories of information collected, categories of use, and purpose of use, is available on our Privacy Policy at https://www.exabeam.com/legal/privacy-policy/.
Tags: Analytics Cloud Exabeam Java Machine Learning Perl Privacy Python Scala Scripting SIEM Threat detection
Perks/benefits: Career development Health care Medical leave Parental leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs