For one of our customers, we’re hiring a hands-on Detection/Software Security Engineer with deep hands-on experience in endpoint and SIEM detection engineering and/or incident response.

Responsibilities :

• Own detection strategy across attack stages, from initial access to persistence and lateral movement
• Build and maintain high-fidelity detections based on endpoint telemetry, logs, and behavioral signals
• False positives, performance, and operational cost
• Collaborate closely with incident response, security research, and the product team

Requirements:

• 5+ years of experience in detection engineering, endpoint security, SIEM engineering, and/or incident response
• Strong hands-on background building detections for endpoint, EDR, or SIEM platforms
• Deep understanding of attacker techniques, TTPs, and real-world intrusion patterns
• Experience writing and tuning detection logic (behavioral rules, analytics, correlations)
• Strong ability to reason about false positives, evasion, and detection gaps
• Experience with Windows, Mac, and Linux operating systems

Position # 619073