Related skills
python soar sigma mitre att&ck osqueryπ Description
- Design, implement, and maintain detections across SIEM, EDR, and cloud.
- Lead detection strategy and architecture aligned with Detection Quality frameworks.
- Write high-fidelity rules with SIGMA and YARA-L.
- Co-lead threat hunting and scale security operations.
π― Requirements
- 7+ years in security operations; 3+ years in detection engineering.
- Deep expertise creating high-fidelity rules: SIGMA, YARA-L, KQL, SPL.
- Proven ability to detect across SIEM, EDR, and cloud; MITRE ATT&CK aligned.
- SOAR platforms (Tines, Splunk SOAR, Cortex XSOAR) expert.
- Python for API integrations and automation.
- Strong threat hunting methodology; lead or co-lead campaigns.
π Benefits
- High-impact leadership role.
- Greenfield SOAR platform and major SIEM migrations.
- Autonomy and influence in security architecture.
- Growth opportunities and clear trajectory.
- Innovation culture and automation-first security.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!