Remote Senior Detection Engineer (4th shift)

Description:

• The Senior Detection Engineer will be part of the Cyber Incident Response Team (CIRT) at Red Canary, responsible for analyzing EDR telemetry, alerts, and log sources to detect threats in customer environments.
• They will publish threats for customers using concise communication and develop new detectors while improving existing ones.
• The role involves enhancing the CIRT workflow through automation, providing mentorship, and challenging the status quo for detecting adversarial behavior.
• The engineer will leverage their SOC experience to enhance the team's knowledge base, engage in cross-team collaboration, and lead projects to improve customer and team quality of life.

Requirements:

• Proficiency in Endpoint (MDR), Cloud/SaaS, Identity, Email, and SIEM analysis.
• Experience with automation and orchestration to handle telemetry and logs efficiently.
• Strong written communication skills and ability to work in a team-centric environment.
• Analytical and critical thinking skills for threat analysis.
• Open-source intelligence research skills and familiarity with attack frameworks.
• Knowledge of backend data structures, query languages, and security platforms.
• Experience with creating and tuning detectors/rules using tools like YARA, SIGMA, Snort, Splunk, Elastic, etc.

Benefits:

• Targeted base salary range: $115,000 - $135,000 + bonus eligibility and equity.
• 4th shift schedule (5pm to 3am MT, Wednesday - Saturday) with an extra stipend.
• 100% paid premiums for medical, dental, and vision for employees and dependents.
• Health & Wellness programs, mental health services, and Employee Assistance Program.
• Fertility benefits, flexible time off, and paid parental leave.
• Pre-tax plans including FSA, HRA, and HSA with employer funding.
• Flexible work environment with 60% remote workforce.
• Rich benefits program for full-time team members.
• Application deadline: August 2nd, 2024.