Security Detection Engineer

Security Detection Engineer

LHH Recruiting Firm is seeking a highly skilled Security Detection Engineer to join our client team. This role will focus on implementing, configuring, and maintaining security detection mechanisms within on-premise and Google Cloud environments. Pay rate: $55 to $65. Remote 100%. No C2C. No Sponsorship.

Responsibilities:

• MITRE ATT&CK Framework: Utilize the MITRE ATT&CK Framework for threat detection creation, gap assessment and analysis.
• Security Detection Implementation: Implement, configure, and maintain security detection rules and mechanisms, including intrusion detection, anomaly detection, and log analysis tools, to identify and respond to security incidents.
• Security Operations: Play a critical role in the day-to-day security operations, including monitoring, tuning, analysis, and proactive threat hunting.
• Incident Response: Lead incident response efforts, investigate security incidents, conduct root cause analysis, and implement corrective measures.
• Kubernetes Incident Response: Apply expertise in Kubernetes for incident response and forensic analysis.
• Security Automation: Develop and maintain automation scripts and tools to streamline security detection operations and response.
• SOAR Playbooks: Build, design, run, and troubleshoot playbooks within a SOAR (Security Orchestration, Automation, and Response) solution to automate incident response processes.
• Documentation: Maintain comprehensive documentation of security detection configurations, incident response procedures, and investigations.
• Stay Current: Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively enhance security detection measures.

Qualifications:

• Experience with cloud security detection tools and technologies, including intrusion detection, anomaly detection, and log analysis.
• Proficiency in scripting and automation (e.g., Python, Bash).
• Experience in incident response, investigations, and security operations.
• Proficiency in Kubernetes with a focus on incident response and forensic analysis.
• Familiarity with the MITRE ATT&CK Framework for threat detection and mitigation.
• Experience working with Splunk Enterprise Security or similar SIEM solutions.
• Excellent problem-solving and analytical skills.
• Strong communication and teamwork skills.
• Relevant certifications such as CISSP, GCIH, GCIA, Certified Kubernetes Administrator (CKA), or Splunk certifications are a plus.
• Google Cloud Professional Cloud Security Engineer certification or equivalent experience.

About LHH:

LHH is a global human capital solutions firm specializing in talent acquisition, leadership development, and outplacement services.

Pay Details: $55.00 to $65.00 per hour

Equal Opportunity Employer/Veterans/Disabled