Job description
Role Overview
We are seeking a skilled Detection Engineer to support enterprise-wide security detection and response across multiple organization-facing environments. This role focuses on creating, tuning, and maintaining detection rules to protect infrastructure at scale.
- Location: Columbia, SC (Nationwide candidates welcome)
- Work Arrangement: Fully Remote (Preference given to candidates willing/able to go on-site as needed)
- Interview Process: 1 Round Virtual/Online (Potential 2nd round on-site if needed)
Key Skills & Focus Areas
Candidates must possess strong expertise in the following areas to be successful in this position:
Primary Technical Requirements
- Detection Languages: Strong understanding of Sigma, YARA, and industry standards.
- Automation & Scripting: 5 years of experience with Python, Bash, or PowerShell.
- Security Frameworks: Deep familiarity with the MITRE ATT&CK framework.
- Environment Experience: 5 years supporting large-scale IT environments or enterprise system deployments.
Highly Preferred Skills (Big Pluses)
- SIEM/XSIAM: Hands-on experience with the Palo Alto Cortex XSIAM platform.
- System Internals: Deep understanding of Windows and Linux artifacts.
- Operations: Proven track record with detection tuning, gap analysis, and SOAR integrations.
- Environment Type: Experience working in a multi-tenancy or multi-agency infrastructure.
- Soft Skills: Excellent agency-facing communication and customer service skills.
Education & Certifications
- Bachelor's degree in IT/InfoSec (or 8 years of relevant work experience in lieu of a degree).
- Preferred Certifications: CISSP, CISM, CISA, CEH, OSCP, GPEN, or vendor-specific Detection Engineering certifications.