SUNSHINE ENTERPRISE USA LLC
Security Consultant (Detection Engineer) - Contract - Remote
Visa Source Listed
📍🇺🇸 United States📅4h agoRemote
python
AI-Powered Fit Check
Instantly analyze how your resume matches this job's requirements and uncover your top strengths.
Job Description
Security Architect – Consultant(Detection Engineer)
Location:Remote
Interview Process:1 round, Virtual/Online - potential for a 2ndround onsite as needed
Duration:12Months
Employment Type: Contract
Experience Required: 08+ Years
Candidatelocation:No SC residency required. Open to nationwide candidates.(Candidates with the ability to work onsite when needed will be givenpreference.)
Project Scope:
Seeking an experienced Detection Engineer /Security Architect Consultant to support enterprise security monitoring,threat detection, and detection engineering initiatives. The ideal candidatewill be responsible for developing, tuning, and maintaining securitydetections, identifying monitoring gaps, and enhancing overall threatvisibility across a large-scale security environment.
Key Responsibilities:
·Review, analyze,and tune existing SIEM detection rules.
·Perform detectioncoverage gap assessments and identify areas for improvement.
·Design, develop,and implement new detection rules and monitoring solutions.
·Monitor threatintelligence sources and translate emerging threats into actionable detections.
·Collaborate withSOC Analysts and Threat Hunters to improve detection capabilities.
·Develop andmaintain documentation, runbooks, workflows, and troubleshooting guides.
·Support SOARintegrations and automation initiatives.
·Coordinate withsecurity engineering teams, SOC personnel, and stakeholders.
·Participate incontinuous improvement efforts to strengthen enterprise security monitoring.
Required Skills & Experience:
·5+ years ofexperience supporting large-scale IT environments and/or system deployments.
·Strong experiencewith detection engineering, threat detection development, and tuning.
·5+ years ofscripting and automation experience using:
Python
PowerShell
Bash
Similarscripting languages
·Experience withdashboard development and reporting.
·Strongunderstanding of:
Sigma
YARA
Otherindustry-standard detection languages
·Familiarity withthe MITRE ATT&CK Framework.
·Experiencedocumenting processes, procedures, and operational workflows.
Preferred Skills:
- Experience with Palo Alto Cortex XSIAM.
- Strong knowledge of Windows and Linux artifacts.
- Experience working in multi-tenant security environments.
- Experience supporting enterprise or multi-agency security programs.
- Strong customer-facing communication and stakeholder engagement skills.
Education:
·Bachelor's Degreein Information Technology, Information Security, or related field.
·Eight years ofrelevant experience may be substituted for the degree requirement.
Certification:
·CISSP
·CISA
·CEH
·OSCP
·GPEN
·Vendor-specificDetection Engineering Certifications
·Other advancedcybersecurity certifications
Originally posted on Himalayas