Senior Detection Engineer

This is a fully remote position, open to applicants in Costa Rica.

📋 Description

• Detection Engineers play a pivotal role in enhancing the threat detection and hunting capabilities of our managed threat hunting service: Zscaler Threat Hunting.

• This position requires the integration of Threat Researcher and Detection Engineering skills to create next-generation detection logic for our threat hunters, employing tools such as Python, SQL, AWS services, YAML-based detection logic, and SIGMA-like rules.

• The role also supports the scalability and maintenance of engineering projects, utilizing data platforms like Hadoop and Athena.

• This role necessitates the independent creation and updating of detections and playbooks, which may involve flexible working hours, including weekend night shifts, and providing on-call support.

⛳️ Requirements

• Practical experience in developing and implementing detection rules within a Security Information and Event Management (SIEM) tool, such as Splunk, Microsoft Sentinel, or ElasticSearch.

• Knowledge of the MITRE ATT&CK framework, along with experience in translating TTPs into actionable detection logic.

• Proficient scripting and automation skills in Python for the development and management of detection infrastructure.

• Exceptional reporting and analytical abilities, with experience in writing and optimizing IDS/IPS and YARA signatures.

• Capability to validate detection logic, conduct root cause analysis of detection failures, and provide recommendations for platform enhancements.

🏝️ Benefits

• A variety of health plans.

• Time off plans for vacations and sick leave.

• Options for parental leave.

• Retirement plans.

• Education reimbursement.

• In-office perks, and more!