Detection Engineer
CrowdStrike
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇬🇧 United Kingdom
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
Splunk
About the role
- Perform threat research and threat hunting to identify emerging tactics, techniques, and procedures (TTPs) to build detection requirements using an intelligence driven approach
- Develop, test, and deploy actionable high fidelity CrowdStrike Next-Gen SIEM detection rules to enable a world class Managed Detection and Response team
- Perform code reviews and testing to ensure high quality and high fidelity detection rules
- Leverage CI/CD best practices and principles to deploy detection rule logic at scale
- Collaborate with Security Analysts to create playbooks for triage and response for actionable high fidelity detections
- Collaborate with SIEM architects to develop and define best practices for parsing data and normalizing data to a common event schema
- Build and maintain utilities and tools to enable the managed services team to operate quickly and at a large scale
- Provide feedback to and work with product management and engineering on improving detection pipelines
- Develop and maintain processes and documentation
- Participate in a Detection Engineer handler rotation
- Mentor junior team members and lead projects at the Falcon Complete organization level
Requirements
- 5+ years of experience as a detection engineer, security engineer, security analyst, threat intelligence analyst, or related field
- Knowledge of current cyber threats and how to detect them using SIEM and relevant technologies
- Knowledge of parsing standards
- Relevant industry certifications (i.e. GCFA, GCDA, GCIH, etc.)
- Experience with analyzing large datasets across variety of vendors
- Experience working with SIEM solutions (LogScale, Splunk, SumoLogic, Sentinel, QRadar, LogRhythm, etc)
- Proven ability to write code and leverage regular expressions
- Ability to effectively communicate, mentor and tutor
Benefits
- Remote-friendly and flexible work culture
- Market leader in compensation and equity awards
- Comprehensive physical and mental wellness programs
- Competitive vacation and holidays for recharge
- Paid parental and adoption leaves
- Professional development opportunities for all employees regardless of level or role
- Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
- Vibrant office culture with world class amenities
- Great Place to Work Certified™ across the globe
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
threat researchthreat huntingdetection requirementsCrowdStrike Next-Gen SIEMCI/CD best practicescode reviewsdata parsingdata normalizationlarge dataset analysisregular expressions
Soft skills
communicationmentoringcollaborationleadershiptutoring
Certifications
GCFAGCDAGCIH