Detection Developer

ReliaQuest

ReliaQuest

Software Engineering
Pune, Maharashtra, India
Posted on Thursday, July 11, 2024

Why it’s worth it:

Are you passionate about Cyber Security and tracking down and detecting advanced threats? Are you interested in working across many unique environments for the largest and most recognizable brands? Joining ReliaQuest’s Threat Detection Engineering team will provide you vast experiences and opportunities to excel in these areas. You will work alongside a team of peers aligned on the same goals of detecting threats to accomplish the mission of making security possible. Additionally, you will work in collaboration with the security analysts who are providing recommendations on how to improve detection capabilities.

The everyday hustle:

  • Tune detection capabilities across multiple technologies including Splunk, QRadar, LogRhythm, Carbon Black, and CrowdStrike
  • Coordinate with internal teams to improve the accuracy of detection capabilities and implement best practice mitigations
  • Document and communicate detection capabilities and gaps clearly and effectively leveraging multiple industry frameworks including MITRE ATT&CK, the Cyber Kill Chain, and NIST

Do you have what it takes?

  • Bachelor's degree in a related field or equivalent demonstrated experience and knowledge
  • Understanding of cyber security and IT disciplines including networking, operating systems, authentication protocols, general enterprise network architecture, and security incident response.
  • Understanding of common enterprise technology purposes and logging capabilities including firewalls, Active Directory, antivirus/EDR, IDS/IPS, proxies.
  • Positive and Influential Attitude, Energy, and Effort
  • Adaptability, Accountability, Helpfulness, and Focus
  • Ability to communicate east-west across multiple diverse teams in both focus, skillset, and geo-location
  • Must be proficient in the English language, both written and verbal

What makes you uncommon?

  • Regular expression, scripting, and programming experience are not required, but highly desirable
  • Certifications such as Network+, Security+, CySA+