Staff Software Engineer
TENEX.AI
AWSCloudDistributed SystemsDockerGoGoogle Cloud PlatformJavaScriptKubernetesMySQLNext.jsPostgresPython+2 more
Principal Engineer – Cyber Countermeasures
Recruiting.com
full-time
Posted on:
Location Type: Remote
Location: Remote • Pennsylvania, Texas • 🇺🇸 United States
Visit company websiteJob Level
Lead
Tech Stack
CloudCyber SecurityPythonSplunk
About the role
- Lead the design and implementation of cyber countermeasures to prevent, detect, and disrupt advanced adversary tactics, techniques, and procedures (TTPs).
- Develop and optimize detection engineering use cases, correlation rules, and behavioral analytics across SIEM, EDR, SOAR, and cloud platforms.
- Partner with threat intelligence and red team functions to emulate adversary tradecraft and convert insights into actionable countermeasures.
- Lead efforts to integrate deception technologies, honeypots, and adversary engagement strategies into enterprise defenses.
- Collaborate with SOC, incident response, and vulnerability management teams to ensure countermeasures are actionable, tested, and continuously improved.
- Engineer security automation and orchestration workflows to accelerate incident detection and response.
- Act as a technical escalation point during major incidents where adversary countermeasures must be deployed in real-time.
- Monitor industry research, emerging threats, and evolving attacker techniques to ensure defenses remain ahead of adversary capabilities.
- Mentor SOC engineers, detection engineers, and other cyber defense staff in adversary disruption tradecraft.
- Provide input to executive leadership on countermeasure effectiveness, defensive gaps, and future-state strategies.
Requirements
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or equivalent work experience
- Advanced knowledge of adversary TTPs, cyber defense operations, and detection engineering methodologies
- Familiarity with MITRE ATT&CK, MITRE D3FEND, Cyber Kill Chain, and deception frameworks
- 10+ years of progressive experience in cybersecurity, with at least 7 years in detection engineering, red/purple team operations, or cyber defense countermeasures
- Demonstrated expertise in designing and implementing countermeasures to mitigate sophisticated adversary campaigns
- Hands-on experience with SIEM, EDR, SOAR, and deception technologies (e.g., Splunk, CrowdStrike, Sentinel, Illusive, or Attivo)
- Proven ability to operationalize adversary simulation and intelligence into measurable security improvements
- Experience in developing security automation scripts and tools (e.g., Python, PowerShell, or similar)
- Strong communication skills with the ability to present defensive strategies and technical findings to both technical teams and executive stakeholders.
Benefits
- medical, dental, and vision care
- backup dependent care
- adoption assistance
- infertility coverage
- family building support
- behavioral health solutions
- paid parental leave
- paid caregiver leave
- training programs
- professional development resources
- mentorship programs
- employee resource groups
- volunteer activities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cyber countermeasuresdetection engineeringcorrelation rulesbehavioral analyticssecurity automationorchestration workflowsadversary simulationsecurity automation scriptsPythonPowerShell
Soft skills
communication skillsmentoringcollaborationleadershiptechnical escalation
Similar jobs on JobTailor
Software Engineer
TENEX.AI
AWSCloudGoGoogle Cloud PlatformJavaScriptMySQLNext.jsPostgresPythonReactTypeScriptVue.js
Senior Software Engineer
TENEX.AI
AWSCloudDockerGoGoogle Cloud PlatformJavaScriptKubernetesMySQLNext.jsPostgresPythonReact+1 more
Full Stack Software Engineer
AvaSure
JavaScriptMongoDBNode.jsReactSDLC
Software Development Engineer
CSG
AngularAWSCloudJavaScriptNode.jsPostgresPythonSQL