We are looking for a "Threat Detection Analyst" to strengthen the cybersecurity detection capabilities of a integral enterprise environment.
In this role, you will be responsible for analyzing, detecting, and mitigating cyber threats across on-premise, cloud, and hybrid infrastructures. You will design and implement advanced detection mechanisms, collaborate with multiple cybersecurity teams, and contribute to improving the organization’s overall security posture against evolving threats.
TASKS & RESPONSIBILITIES 🚀:
• Analyze and detect cyber threats and malicious activities targeting enterprise environments.
• Design and implement threat detection mechanisms across on-premise, cloud, and hybrid infrastructures.
• Perform threat hunting activities to proactively identify suspicious behavior and attack patterns.
• Collaborate closely with Threat Intelligence, Security Operations, and Incident Response teams.
• Develop and tune detection rules and behavioral analytics to improve detection accuracy and reduce false positives.
• Monitor and analyze security events from EDR, IDS/IPS, network, and cloud security tools.
• Research emerging threats, attack methodologies, and adversary techniques to enhance detection strategies.
• Automate security and detection tasks using Python, PowerShell, or Bash.
• Develop integrations and workflows using APIs and automation tools.
• Document detection logic, investigations, and recommendations for technical and non-technical stakeholders.
• Contribute to the continuous improvement of the organization’s cybersecurity posture and detection capabilities.
SKILLS 🤹:
• Minimum of 3–5 years of experience in cybersecurity roles, such as Threat Hunter, Detection Engineer, or similar positions.
• Hands-on experience with EDR solutions such as SentinelOne, CrowdStrike, FortiEDR, or Microsoft Defender for Endpoint.
• Understanding of threat intelligence frameworks such as MITRE ATT&CK; and D3FEND.
• Strong scripting and automation skills in Python