Related skills
aws python siem edr threat hunting📋 Description
- Design, build, and tune detections across SIEM, apps, and cloud
- Leverage attacker TTPs to catch threats while reducing noise
- Conduct threat hunts, malware analysis, and automation at scale
- Collaborate with IR, SOC, and intel teams on detections
- Build data pipelines and tooling for detection-as-code
- Map coverage to MITRE ATT&CK and prioritize gaps
🎯 Requirements
- 5+ years in detection engineering, threat hunting, or security ops
- Experience writing detection logic in modern SIEM platforms (Splunk, Elastic, Sentinel)
- Strong understanding of adversary tradecraft across the attack lifecycle
- Ability to translate threat intel into actionable detection opportunities
- Experience developing network- and endpoint-based detections across Windows, Linux, macOS
- Experience analyzing telemetry across endpoint, network, cloud, identity, and logs
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest — finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!