Security Monitoring Detection Engineer

. Applying software engineering principles (version control, CI/CD, testing) to security rules.

Posted 4/20/2026full-timeRemote • 🇺🇸 United StatesMid-LevelSeniorWebsite

Tools & technologies

CloudPythonSplunkSQL

Key responsibilities & impact

Applying software engineering principles (version control, CI/CD, testing) to security rules.
Mapping detection strategies against frameworks such as MITRE ATT&CK to identify coverage gaps.
Analyzing telemetry from endpoint, network, cloud, and identity systems to identify anomalous patterns.
Continuously tuning rules to reduce noise and enhance actionable alerts.
Designing, developing, testing, deploying, and maintaining rules to detect threats.

What you’ll need

Strong proficiency in Python scripting, SQL, and regex, as well as experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel).
Understanding of attacker techniques, tactics, and procedures (TTPs).
Ability to parse and analyze large-scale log data for anomalies.
Often requires experience in SOC analysis, incident response, or threat hunting.

Comp & perks

Competitive salary, paid twice per month
Best in class medical coverage
100% of medical premiums covered by True Zero
Company wide new business incentive programs
Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
3 weeks of PTO starting + 11 Paid Holidays Annually
401k Program with 100% company match on the first 4%
Monthly reimbursement of Cell Phone and Home Internet costs
Paternity/Maternity Leave
Investment in training and certifications to broaden and deepen your technical skills

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

PythonSQLregexversion controlCI/CDtestinglog data analysisthreat detectionanomaly detectionrule tuning