Senior Threat Detection Engineer

Company Description

Discover the Unexpected

Experian is the world’s leading global information services company. We’re passionate about unlocking the power of data in order to transform lives and create opportunities for consumers, businesses and society. For more than 125 years, we’ve helped economies and communities flourish – and we’re not done.

Our 21k amazing employees in 40+ countries believe the possibilities for you, and the world, are growing. We’re investing in the future, through new technologies, talented people and innovation so we can help create a better tomorrow. To do this we employ the brightest minds that share our purpose and want to make a difference.

Job Description

The Threat Detection Engineering team within the Cyber Fusion Centre (CFC)  is responsible for developing and maintaining high-quality threat detection rules informed by the most critical threats targeting Experian.  The Cyber Threat Detection Engineer role is primarily responsible for two things as follows;-

1. Maintaining and tuning high fidelity, low noise alerts to effectively identify and prioritize critical issues, minimising false positives, and enhancing the overall security posture of Experian. 

2. Coordinate new Use Cases entering the ecosystem to detect against threats within the MITRE ATT&CK Framework, prioritized by cyber threat intelligence and situational awareness.   

Duties include: 

• Develop and maintain high-quality threat detection rules, queries, and alerts based on identified use cases, threat scenarios, and structured threat intelligence, including MITRE ATT&CK™ Tactics, Techniques and Procedures (TTPs). 
• Utilize Splunk or other SIEM tools, including rule creation, query writing, and alert management. 
• Leverage the MITRE ATT&CK™ Framework and other forms of structured threat intelligence to enhance detection capabilities, develop contextualized alerts, and improve overall security posture. 
• Evaluate and recommend new security tools, techniques, and process to enhance the organization threat detection and response capabilities. 

Qualifications

We're searching for someone with the expert technical skills that are needed to defend the enterprise environment these include: 

• Solid information security related experience, in areas such as: security operations, incident analysis, incident handling, vulnerability management or testing, system patching, log analysis, intrusion detection, or security device administration. 
• Proficiency in Splunk or other SIEM tools, including rule creation, query writing, and alert management. 
• In-depth packet analysis skills, core forensic familiarity, incident response skills, and data fusion skills based on multiple security data sources. 

Additional Information

Our uniqueness is that we truly celebrate yours.

Experian's culture and people are key differentiators. We take our people agenda very seriously. We focus on what truly matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. We’re an award winning organisation due to our strong people first approach.

Innovation is a critical part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

#LI-CC1

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here