Related skills
aws python soar sigma kqlπ Description
- Design and deploy detection logic across our stack using code-based rules.
- Build automated response workflows to triage and remediate alerts.
- Investigate complex signals requiring deep security judgment.
- Collaborate with DevOps and Security Eng to adapt detection changes.
- Leverage AI/LLMs to accelerate threat hunting and automation.
- Lead post-incident reviews and harden our defenses.
π― Requirements
- 5+ years in detection engineering, incident response, or security ops.
- Advanced Python production automations.
- Deep AWS Cloud Security (IAM, VPC, CloudTrail, Lambda).
- Mastery of detection logic in YARA-L, Sigma, KQL, or SPL.
- Built SOAR workflows or automation platforms.
- Excellent communication across teams.
- Experience using AI/LLMs for threat analysis and automation.
- Self-directed, engineering-first mindset.
π Benefits
- HDHP health plan with telehealth and Calm.
- Growth & Development via LinkedIn Learning and programs.
- Generous open PTO and work-life balance.
- 401(k) with immediate vesting and remote hub stipend.
- Collaborative culture and teamwork.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!