Detection Engineer

Job Description

• Develop and implement Splunk detection and monitoring solutions tailored to our GCP environment.
• Create and maintain Splunk dashboards, alerts, and reports to provide actionable insights into security events and system performance.
• Integrate Splunk with various GCP services and third-party security tools to enhance visibility and detection capabilities.
• Monitor security events and alerts generated by Splunk and other security tools.
• Investigate and respond to security incidents, performing root cause analysis and implementing corrective actions.
• Collaborate with the security operations team to develop and refine incident response procedures.
• Analyze large volumes of security data to identify trends, anomalies, and potential threats.
• Generate detailed reports and presentations for stakeholders, summarizing findings and recommendations.
• Continuously improve detection rules and use cases based on emerging threats and industry best practices.

Primary Skills

• Detection Engineer
• Threat Intelligence
• Threat hunting
• Splunk

Secondary Skills