Are you passionate about Cyber Security and tracking down and detecting advanced threats? Are you interested in working across many unique environments for the largest and most recognizable brands? Joining ReliaQuest’s Detection Developer team will provide you vast experiences and opportunities to excel in these areas. You will work alongside a team of peers aligned on the same goals of detecting threats and also work very closely with members of the Detection Architect team to accomplish the mission of making security possible. Additionally, you will work in collaboration with the security analysts who are providing recommendations on how to improve detection capabilities. You will be an integral part of detecting and responding to the ever changing security landscape.
The everyday hustle:
Implement and maintain detection capabilities across multiple technologies including Splunk, QRadar, LogRhythm, Carbon Black, and CrowdStrike
Coordinate with internal and external teams to improve the accuracy of detection capabilities and implement best practice mitigations and automated response capabilities
Document and communicate detection capabilities and gaps clearly and effectively leveraging multiple industry frameworks including MITRE ATT&CK, the Cyber Kill Chain, and NIST
Research and innovate net new mitigation, detection, and response capabilities given input from industry trends, customer feedback, and personal research
Do you have what it takes?
Bachelor's degree in a related field or equivalent demonstrated experience and knowledge
Understanding of cyber security and IT disciplines including networking, operating systems, authentication protocols, general enterprise network architecture, and security incident response.
Understanding of common enterprise technology purposes and logging capabilities including firewalls, Active Directory, antivirus/EDR, IDS/IPS, proxies, and cloud platforms
Understanding of a log aggregation or correlation technology such as Splunk, QRadar, LogRhythm, Carbon Black, or CrowdStrike.
Understanding of security detection frameworks such as MITRE ATT&CK, Cyber Kill Chain, and NIST
Positive and Influential Attitude, Energy, and Effort
Adaptability, Accountability, Helpfulness, and Focus
Ability to communicate east-west across multiple diverse teams in both focus, skillset, and geo-location
Must be proficient in the English language, both written and verbal
What makes you uncommon?
Regular expression, scripting, and programming experience are not required, but highly desirable