Security Engineer - Detection & Response
Skills
- 5+ years in security/detection engineering or threat automation roles
- Strong knowledge of MITRE ATT&CK and IOC/IOA detection patterns
- Hands-on SIEM experience (vendor-neutral) and familiarity with cloud-native telemetry (preferably AWS)
- Python scripting for integrations, enrichment, and playbook development
- Experience with structured data formats (JSON, YAML, logs, metrics) and API-driven integrations
- Familiarity with detection-as-code, CI/CD for detection logic, and detection rule formats (e.g., Sigma)
- Experience designing SOAR playbooks and automation with observability and rollback controls
- Demonstrated use of AI tools to accelerate detection engineering with human validation
Responsibilities
- Design, implement, and operate a scalable cloud-native SIEM/detection pipeline ingesting identity, endpoint, SaaS, and infrastructure telemetry
- Develop and maintain detection coverage maps aligned to MITRE ATT&CK, threat modeling, and incident history
- Leverage AI to accelerate rule creation, enrichment, triage insights, and AI-assisted threat hunting with human validation
- Build observability dashboards to measure rule effectiveness, alert volumes, and system performance
- Design and implement SOAR workflows and automated response playbooks with rollback and reliability controls
- Lead incident response as part of the incident commander rotation and improve runbooks/playbooks using lessons learned
- Collaborate cross-functionally to embed detection and response into system design and operational processes
Education
- Bachelor’s degree in Computer Science, Engineering, Information Security, or related field, or equivalent experience
- Relevant security certifications (e.g., CISSP, GCP/AWS security certs, SANS/GSEC) are beneficial but not required
Benefits
- Competitive USD compensation paid in U.S. dollars
- 100% remote (work from home, home country only)
- Flexible paid time off and local holiday pay
- Company learning membership and tutoring benefits for employee and household
- Access to cutting-edge AI tools and a feedback-rich, collaborative culture
- Opportunity to impact a global education platform and work with high-ownership teams
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
An experienced ServiceNow Developer is needed to design, implement, and maintain ServiceNow HR and platform functionality for CGS supporting a large federal agency.
Sigma Defense is hiring a Senior Network Engineer (SIL) to design, implement, test, and support complex Cisco-based networks for DoD classified environments.
Maveris seeks a hands-on Exploitation Analyst/Penetration Tester to perform offensive security assessments and deliver actionable findings for government and private-sector systems.
Desktop Support Analyst for a Richmond-based logistics company responsible for providing end-user hardware/software support, desktop maintenance, and user training.
Emory University's School of Medicine is hiring a Business Analyst II to drive systems analysis, requirements gathering, and project coordination in support of brain health initiatives.
Capgemini Insurance is hiring an FBS IT Onboarding Specialist to manage IT onboarding, integration touchpoints and automation improvements for new hires and contingent workers.
Experienced security engineer needed to architect and operate defenses across cloud and enterprise environments for a growth-minded industrial automation software company.
Experienced enterprise architect to design, lead, and deliver scalable .NET/SQL Server applications and integrations for NYC DOT's mission-critical systems.
Deutsche Bank seeks an Assistant Vice President Problem Manager in Jacksonville to lead problem management, perform root cause analysis, and drive remediation efforts across infrastructure and applications.
Senior Cybersecurity Analyst needed to lead RMF/A&A, vulnerability management, and DISA compliance for AFOSI networks at Quantico under a cleared contractor role.
Experienced Customer Service Engineer needed to provide onsite endpoint support, system administration, and ServiceNow ticketing support at the Pensacola VA Clinic for Kentro's VA-ESOM contract.
Scientific Research Corporation is hiring a Cyber Security Analyst III to drive DoD-aligned cybersecurity engineering, risk assessments, and system authorization for classified programs.
Link Solutions is hiring a cleared VTC Support Specialist in Adelphi, MD to configure, maintain, and troubleshoot video conferencing systems supporting DoD operations.
Nerdy (NYSE: NRDY) is a leading platform for live online learning, with a mission to transform the way people learn through technology. The Company's purpose-built proprietary platform leverages technology, including AI, to connect learners of all...
4 jobs
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
