Job Information
Insight Global Sr. Detection Engineer in Bellevue, Washington
Job Description
Play a vital role in designing and building a comprehensive threat detection program
Work with partners throughout security and engineering to develop and improve threat detection logic, enhance response capabilities, and deploy new tools
Identify active threats to the system environments including company website, corporate networks, third party services, and individual user endpoints Threat Modeling / Hunting
Inform log ingestion requirements for threat detection use case development
Research of new attack techniques in order to improve detection logic.
Creating custom logic, detection rules, and alerts to identify suspicious patterns and activity.
Security Detection Lifecycle Management (Maintain, tune, deprecate, etc.)
Develop content to improve detective capabilities in Security tooling (SIEM, EDR, etc.)
Work with IR teams to respond to security incidents promptly
A champion for process, recommending tool, software development, or infrastructure changes to improve or enhance security
Lead small to medium sized projects as advised (taking ownership while developing/driving a solution to its full value/completion)
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Skills and Requirements
4+ years' Experience in cybersecurity related field
2+ years of detection engineering experience
2+ years of experience w/cloud related technologies (Azure, AWS, GCP, etc.)
Experience with incident handling (investigating/supporting/assisting/etc)
Experience Threat Modeling
2+ years of detection engineering experience
SME level knowledge of a SIEM (Splunk, Azure Sentinel, QRadar, etc) Drive to identify known and unknown threats and attacks
Programming/Scripting languages such as Python, etc.
Subject Matter Expert (SME) in multiple security domains
Experience with high level design architecture, security technologies, Networking, web services and SOA. Understanding of encryption, obfuscation, tokenization technologies null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.