Related skills
cloud powershell python go apisπ Description
Design, build, and scale high-signal detections across cloud and identity.
Develop detections aligned to attacker behavior and MITRE ATT&CK.
Translate threat intel into actionable detections; validate via emulation.
Build behavioral detections to prevent account takeover and API misuse.
Tune alerts; reduce false positives; automate enrichment and triage.
Define and track KPIs and monitor detection health.
π― Requirements
4+ years in information security focused on detection engineering or SOC.
Experience tuning detections across cloud, identity, endpoint, or apps.
Familiarity with YARA, SIGMA, Suricata, or rule-based tooling.
Strong understanding of attacker techniques: identity, cloud abuse, lateral movement.
Experience analyzing cloud/SaaS telemetry: auth events, API activity, logs.
Scripting in Python, Go, or PowerShell for automation.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!