SIEM Threat Detection Engineer
Department: Security Operations
Employment Type: Full Time
Location: Costa Rica
Description
Who is DeepSeasWith 30 years of experience in cyber defense, DeepSeas is trusted by nearly 1,000 clients around the world, including Fortune 100 enterprises and mid-market organizations, higher education institutions, municipality and local governments, and federal agencies. Known for its programmatic approach to continuously transforming cyber defense programs, DeepSeas is recognized by Gartner as a top 40 provider of MDR and ranked as a top 5 MDR leader in the 2024 Frost Radar™: Global Managed Detection and Response (MDR) Market. In addition to its industry-leading MDR service, DeepSeas offers a full suite of advisory, compliance, and testing services to support clients on their cybersecurity transformation journeys, with an approach to cyber defense that prioritizes technical expertise, tradecraft, and continuous innovation to deliver unparalleled results.
Position Overview
As the Threat Detection Engineer, you will work with the Threat Detection Engineering team to proactively identify detection gaps and develop new signatures to alert on malicious cyber activity. Tune existing detections. You will support product, sales and marketing teams by providing in depth subject matter expertise about the capabilities of various EDR products. You will be a key collaborator in the design, development, and deployment of threat detection capabilities. You will support a rapidly growing organization and customer base. Leverages self-motivation and internal drive to research unknown problems and tackle new challenges.
Key Responsibilities
• Consume Cyber Threat Intelligence reports to identify detection opportunities• Develop detection logic for a variety of endpoint detection tools
• Work with the various internal stakeholders to develop new detection solutions
• Respond to support requests from the SOC
The person in this role is required to provide:
• 5+ years' experience in Cybersecurity
• At least one year experience in a SOC analyst role
• Strong log analysis skills
• Knowledge of cloud-based technologies
• Understanding of Mitre ATT&CK
• Previous experience writing detection logic
Skills Knowledge and Expertise
•5+ years' experience in Cybersecurity•At least one year experience in a SOC analyst role
•Strong log analysis skills
•Knowledge of cloud-based technologies
•Understanding of Mitre ATT&CK
•Previous experience writing detection logic
Helpful Qualifications
•Familiarity with a variety of SIEM tools
•Working knowledge of Python
•Experience with threat hunting
•Data engineering experience
Why DeepSeas?
•Join a strong/profitable industry leader in one of the highest growth industries around.•We are a company where you will be able to make a direct impact on both the product and company culture. Your opinions matter and are listened to.
•Our culture is collaborative, one that respects and appreciates you for your unique skills.
•We are a tight-knit group where you will be supported in achieving your best while enjoying your work life.
•You will be challenged and learn new skills in the latest technologies.
•You will be able to work on a variety of projects and won’t get bored!
•We enjoy a flexible work schedule and casual work environment
•Competitive benefits package including full healthcare, dental, vision, Paid Time Off, Sick Leave, Personal Choice Holidays, Life/Accident Insurance, 401(k) Retirement Plan with company matching, Company Bonus & more
This is your chance to join a supportive crew of teammates and an industry-leading organization that values opportunities for growth. If DeepSeas sounds like a good fit for you, send us your resume and let’s talk!
Information security is everyone’s responsibility:
•Understanding and following DeepSeas’s information security policies and procedures.
•Remaining vigilant and reporting any suspicious activity or possible weaknesses in DeepSeas’s information security.
•Actively participating in DeepSeas’s efforts to maintain and improve information
•security.
•DeepSeas considers this position is as Moderate Risk with a potential to
•view/access/download restricted/private client/internal data. This information must be treated with
•sensitivity and in the most secure manner. HR reserves the right to perform random background/drug
•screens to ensure the safety of client/DeepSeas data