Related skills
sql python siem oauth xdrπ Description
- Design and develop detection logic to identify threats and misconfigurations in SaaS apps.
- Research SaaS platforms (Google Workspace, Microsoft 365, Salesforce, Slack) APIs and models.
- Translate attack techniques into scalable product capabilities, including detections and risk signals.
- Contribute to threat detection and posture content across identity, access, and data exposure.
- Analyze large-scale SaaS telemetry to identify patterns and anomalies for new detections.
- Collaborate with Engineering to productionize detection logic and ensure reliable execution at scale.
π― Requirements
- 5-8+ years in cybersecurity with hands-on detection engineering or threat research.
- Strong understanding of SaaS security concepts: IAM, OAuth, third-party risks.
- Experience working with security telemetry and logs, incl. SQL, Python for data analysis.
- Experience developing or tuning detection logic in a SIEM, XDR, or similar system.
- Familiarity with SaaS APIs and security-relevant data sources.
- Understanding attacker techniques in SaaS, including identity-based attacks and privilege escalation.
π Benefits
- Stock options
- Generous PTO and holidays
- Parental and family leave
- Health, dental, and vision insurance with HSA
- EAP, life insurance, and AD&D
- 401(k) with Roth and wellness reimbursement
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!