Remote Principal Threat Detection Engineer

Exciting Remote Principal Threat Detection Engineer, 12 months, contract opportunity.

Requirements

• Lead, develop, and drive the strategic direction of Customer’s Threat Detection and Security Monitoring service
• Develop and maintain a threat detection framework that is aligned and mapped to industry frameworks (such as MITRE ATT&CK) that measures, over time, Customer’s ability and coverage to detect threats against the latest and greatest tactics and techniques.
• Monitor the threat landscape in an effort to understand threats and ways to detect them, and identify intelligence requirements.
• Experience with incident response in a Cloud Infrastructure environment (AWS, GCP, Azure) and ensure readiness for Cloud, Edge, and Application layer cyber as well as mentoring and leading the team to new emergent threat detection evolution of playbooks and analytics.
• Manage and support development of security operations playbooks to ensure threat detection, monitoring, response, and forensics activities align with best practices, minimize gaps in detection and response, and provide comprehensive mitigation of threats
• Demonstrated expert level experience in network detection, IDS technologies, and SIEM technologies.
• Deep understanding of attack models (such as MITRE’s ATT&CK framework), and experience applying them in large-scale enterprise environments
• 7 plus years of experience and a Bachelor’s degree (preferred in Information Systems, Computer Science, or related disciplines).