Security Consultant (Detection Engineer) - Contract - Remote

About the Role

The ideal candidate will have a strong understanding of security principles, threat detection, and mitigation techniques. You will be working closely with the security engineering teams, SOC personnel, and stakeholders to improve detection capabilities and strengthen enterprise security monitoring.

This role is perfect for someone who is passionate about cybersecurity and has a keen interest in staying up-to-date with the latest threats and technologies. If you are a motivated and experienced security professional looking for a new challenge, this could be the opportunity for you.

What You Will Do

• Review, analyze, and tune existing SIEM detection rules to ensure they are effective and up-to-date
• Perform detection coverage gap assessments to identify areas for improvement
• Design, develop, and implement new detection rules and monitoring solutions to enhance threat visibility
• Monitor threat intelligence sources and translate emerging threats into actionable detections
• Collaborate with SOC Analysts and Threat Hunters to improve detection capabilities
• Develop and maintain documentation, runbooks, workflows, and troubleshooting guides
• Support SOAR integrations and automation initiatives to streamline security processes
• Coordinate with security engineering teams, SOC personnel, and stakeholders to ensure effective communication and collaboration
• Participate in continuous improvement efforts to strengthen enterprise security monitoring

What We Are Looking For

• 8+ years of experience supporting large-scale IT environments and/or system deployments
• Strong experience with detection engineering, threat detection development, and tuning
• 5+ years of scripting and automation experience using languages like Python, PowerShell, or Bash
• Experience with dashboard development and reporting
• Strong understanding of industry-standard detection languages like Sigma and YARA
• Familiarity with the MITRE ATT&CK Framework
• Experience documenting processes, procedures, and operational workflows
• Bachelor's Degree in Information Technology, Information Security, or a related field
• Relevant certifications like CISSP, CISA, CEH, OSCP, or GPEN

Nice to Have

• Experience with Palo Alto Cortex XSIAM
• Strong knowledge of Windows and Linux artifacts
• Experience working in multi-tenant security environments
• Experience supporting enterprise or multi-agency security programs
• Strong customer-facing communication and stakeholder engagement skills

Benefits and Perks

• Competitive compensation package
• Opportunity to work with a talented team of security professionals
• Flexible remote work arrangements
• Professional development and training opportunities
• Access to the latest security tools and technologies
• Comprehensive health insurance package
• Generous PTO and holiday leave

• Make sure to highlight your experience with scripting languages like Python and your understanding of industry-standard detection languages in your resume and cover letter.
• Showcase your ability to work independently and as part of a team, as this role requires collaboration with various stakeholders.
• Be prepared to provide examples of your experience with threat detection and mitigation, as well as your knowledge of security frameworks and regulations.
• Consider creating a portfolio of your work, including examples of detection rules and monitoring solutions you've developed and implemented.
• Don't be afraid to ask about the company culture and values during the interview process, as this can give you valuable insight into whether this is the right fit for you.
• Research the company's security posture and be prepared to discuss how you can contribute to it.