Staff SIEM Detection Engineer

Summary

Join Ava Labs, a world-class blockchain development team, as an experienced SIEM Detection Engineer to defend against sophisticated threats and architect security infrastructure.

Requirements

• 10+ years of experience in threat hunting, SIEM management, and incident response
• Experience building content for multiple SIEM platforms
• Demonstrated ability to self-learn and quickly evaluate and adapt new technologies and address emerging threats
• Proficiency in developing and maintaining tools using Python along with experience with debugging tools
• Strong skills in data analysis, including experience with SQL
• Knowledge of anomaly detection techniques and real world experience applying that knowledge
• Passion for diving into the details of a problem and identifying an answer
• Pragmatic approach to solving problems with a theoretical grounding

Responsibilities

• Integrate relevant log sources from various systems and applications to ensure comprehensive data collection
• Develop and optimize detection rules, alerts, and dashboards for effective threat hunting
• Perform data analysis to identify anomalies and potential security incidents
• Automate security operations and incident response processes to scale the capabilities of the team
• Participate in an on-call rotation as a first responder to incidents requiring human intervention
• Research and develop custom tooling to enhance security monitoring and response capabilities
• Stay up-to-date with emerging threats, vulnerabilities and technologies to improve detection and response strategies
• Contribute to the improvement of security policies, procedures, and documentation

Preferred Qualifications

• Bonus points for experience with infrastructure automation tools such as Terraform/Terragrunt
• Bonus points for any offsec experience, red teaming, pen testing, OSCP, etc