PbWe’re hiring a Detection Engineer /b /ppbr/ppbLocation: /b Barcelona / Spain - Remote /ppbSalary: /b €28,000–€34,000 gross per year, depending on experience and capabilities /ppbr/ppWe are looking for a bDetection Engineer /b for a cybersecurity consulting and services company (Barcelona-based, international scope) that has been protecting organizations for years across incident response, digital forensics, managed services, threat intelligence, and Red Purple Team engagements. You will join a growing cybersecurity team focused on building and improving advanced detection capabilities for clients across complex environments. /ppThis is a great opportunity for someone with 1–2 years of experience in detection engineering or SOC operations who wants to work closely with both offensive and defensive teams, improve real-world detection logic, and grow in a highly technical environment. /ppbr/ppbAbout the role /b /ppAs a Detection Engineer, you will play a key role in strengthening clients’ security posture. You will apply your knowledge of adversary tactics and techniques to design, improve, and tune advanced detection rules that help identify and respond effectively to security threats. /ppYou will work in a multidisciplinary cybersecurity environment, collaborating with experts across Red Team, Blue Team, threat intelligence, and incident response. This role is ideal for someone who enjoys transforming attacker behavior into meaningful detections and wants to contribute to both strategy and hands-on engineering. /ppbr/ppbWhat you’ll do /b /pulliDesign, develop, and tune detection rules in bMicrosoft Sentinel /b and bMicrosoft Defender /b to enhance incident detection and response capabilities. /liliAnalyze attacker simulation results to identify weaknesses in security controls and detection coverage. /liliDevelop threat detection and mitigation strategies based on adversary behavior and emerging attack techniques. /liliAutomate and optimize workflows by building scripts and tools that improve security assessments and reporting processes. /liliCollaborate with offensive and defensive teams to continuously improve detection quality and visibility. /liliContribute to proactive threat detection efforts by leveraging telemetry, logs, and security event analysis. /li /ulpbr/ppbWhat we’re looking for /b /pulliDegree in Engineering, Cybersecurity, or a related field, or equivalent demonstrable professional experience. /lilib1–2 years of experience /b in one or more of the following areas: /liliDetection Engineering /liliSOC Analysis with hands-on experience creating and/or optimizing alerts in bSIEM /b and/or bEDR /b platforms /liliPractical knowledge of bKusto Query Language (KQL) /b in Microsoft environments. /liliStrong understanding of bWindows logs, telemetry, and event analysis /b, with a focus on identifying adversary tactics and techniques. /liliSolid knowledge of bMITRE ATTCK /b and adversary bTTPs /b. /liliExperience with SIEM and EDR technologies such as bMicrosoft Sentinel/Defender, CrowdStrike, Cortex, Splunk, Elastic, LogRhythm, QRadar, Chronicle, or Wazuh /b is highly valued. /liliScripting skills in bPython, PowerShell, and/or Bash /b for automation and tool development. /liliGood knowledge of bWindows and UNIX/Linux system administration /b. /liliStrong understanding of bnetworking fundamentals and protocols /b, including bTCP/IP, DHCP, DNS /b, and related technologies. /liliA bPurple Team mindset /b, with the ability to think like an attacker while strengthening defensive capabilities. /liliClear and effective bEnglish communication skills /b in technical and international environments. /liliStrong analytical, organizational, and problem-solving skills, with attention to detail and a proactive attitude. /liliCybersecurity certifications or postgraduate training are a plus. /li /ulpbr/ppbWhat’s offered /b /pulliThe opportunity to join an binternational, young, and dynamic team /b in a strong technical environment. /liliClose collaboration with bRed Team and Blue Team /b professionals, gaining exposure to real-world attacks and the latest adversary techniques. /liliAccess to a broad range of detection and security technologies, including bEDR, SIEM, threat intelligence, and other security tools /b. /liliContinuous internal and external training, including support for bcertifications and annual conference attendance /b. /liliA bpersonalized career development plan /b tailored to your interests and growth. /liliFlexible bremote work /b options or access to comfortable offices in bBarcelona /b. /liliWork-life balance support and flexibility. /lilibSummer intensive working hours /b. /lilibFlexible compensation plan /b, including restaurant card, transport, childcare, and training benefits. /lilibPrivate health insurance /b. /li /ulpbr/pp bInterested? Apply via LinkedIn or submit your CV via hackinhire.com. /b /p