Blue Team Engineer

Summary

Join Picus Labs, a leading security validation company, and contribute to the development of innovative cybersecurity solutions. As a Blue Team Engineer, you will manage internal SOC processes, analyze adversarial techniques, and develop threat detection and hunting scenarios. You will research new methodologies and technologies, onboard and iterate on existing systems, and collaborate with the Red Team for purple teaming exercises. This role offers a chance to work for a fast-growing cybersecurity startup, constantly challenging you and providing opportunities to develop your knowledge and skills. You will leverage your expertise in threat detection, hunting, and security monitoring to enhance Picus's security posture. The position requires hands-on experience in various security technologies and a proactive mindset.

Requirements

• Have hands-on experience in hunting current adversarial techniques
• Have experience with security monitoring, incident detection, and response in enterprise environments
• Have proficiency in scripting languages (e.g., Python, Bash) for automating tasks and improving processes
• Have strong threat detection and hunting knowledge
• Have strong SIGMA and YARA rule development knowledge
• Have hands-on experience in administering and using network security, SIEM and EDR technologies
• Have knowledge of Mitre ATT&CK framework and threat intelligence services
• Have a proactive mindset with a continuous learning attitude towards new security technologies and threats
• Have excellent communication skills to effectively interact with technical and non-technical teams
• Have proficiency in written English

Responsibilities

• Analyze, understand, and leverage public research on emerging cyber threats, detection methods and tools
• Research and apply Continuous Threat Exposure Management (CTEM) methodologies by conducting thorough studies on best practices, then implement and continuously refine them to proactively identify, expose, and mitigate vulnerabilities in response to evolving threats
• Research and develop hardening methodologies for cybersecurity defenses by analyzing best practices and frameworks
• Deploy, configure, and manage endpoint security technologies, including XDR, EDR, SIEM, EPP solutions, to evaluate their response to Picus Attack Scenarios
• Design and develop both open-source and vendor-based threat detection scenarios
• Utilize AI and data analysis techniques to create innovative cybersecurity solutions that enhance threat detection and response capabilities
• Optimize detection rules to improve the accuracy and efficiency of threat detection, reducing false positives while enhancing the ability to identify cyber threats
• Develop and maintain tools to support the Detection Development Life Cycle
• Conduct research on new threat hunting methodologies, tools, and technologies to stay ahead of evolving threats
• Onboard, configure, and maintain detection and hunting products (e.g., SIEM, EDR) to enhance security operations
• Optimize internal SOC technologies and processes to improve threat detection and response capabilities
• Utilize threat intelligence services and malware sandboxes to effectively hunt for and analyze emerging malware threats
• Collaborate with Picus Labs Red Team for purple teaming exercises to improve defenses
• Partner with engineering teams to contribute to the development and refinement of new product features

Preferred Qualifications

Have community contribution to defensive knowledge (Open source projects, etc.)

Benefits

• Fascinating work - a chance to shape and lead an exciting, fast-growing cyber security segment
• Unlimited opportunity! We are growing. At Picus, you'll be provided with as much responsibility as you can handle - new career development opportunities constantly arise given our rate of growth
• Global exposure - Get a lot of experience working not only in a fast-growing startup but also interact with customers all around the world
• Be part of a global remote team who is taking on Exposure Validation and a growing market segment