Tech Stack

Description

You'll develop and maintain detection logic across endpoints, cloud, containers, and SaaS to identify threats. You'll also mentor junior team members and design automation playbooks to streamline incident response. Join us in shaping the security posture of a leading grocery technology platform.

Requirements

• 5+ years experience in detection engineering, incident response, or offensive security
• Experience with AWS, Azure, or GCP
• Deep understanding of attacker TTPs in zero trust environments
• Proficient understanding of macOS internals and telemetry
• Experience with detection-as-code workflows and CI/CD pipelines

Responsibilities

• Develop, tune, document, and maintain detection logic across multiple log sources
• Assist in cyber forensic investigations
• Optimize log ingestion pipelines and telemetry collection
• Design and build SOAR playbooks and automation workflows
• Mentor junior security analysts and detection engineers