DETECTION ENGINEER - Herndon - CriticalTilt

    CriticalTilt
    CriticalTilt Herndon

    1 week ago

    Description
    Company Overview
    CriticalTilt blends 25+ years of specialized experience with a lean, responsive approach, delivering tailored solutions to government agencies and private sector clients. From navigating complex networks to adapting to new compliance demands, we understand our customers' challenges and are primed to tilt the board towards success for their projects.
    Position Overview
    CriticalTilt, Inc. is seeking a highly skilled and experienced DETECTION ENGINEER (CORELIGHT) with a strong emphasis on network intrusion detection using the Corelight platform. The ideal candidate will possess a deep understanding of Zeek, Suricata, and YARA and measurable experience using Corelight sensors and the Fleet management platform. This role will be as resident engineer and subject-matter expert on the Customer's site. The DETECTION ENGINEER (CORELIGHT) will be responsible forefforts focused on implementation, configuration, use case development, and operational consulting by working closely with the customer to adapt visibility to mission.
    Personnel Security Clearance (PSC)
    Applicants must hold an active TS / SCI clearance with Full Scope Polygraph.
    Responsibilities
    • Craft and maintain novel detection rules, algorithms and alerts that identify malicious and unusual activities
    • Conduct threat hunting activities to identify anomalies and potential threats
    • Leverage controlled environments for analyzing the operation of specific attacks and attacker techniques
    • Engage with Customer IT and cybersecurity personnel as well as Corelight support to produce and refine effective detections
    • Disseminate knowledge and discoveries regarding detections via internal- and external-facing documentation
    • Continuously improve intrusion detection capabilities based on emerging threats
    Qualifications - General
    • 3+ years of experience in one or more of the following information security disciplines: detection engineering, threat hunting, incident response, security operations engineering
    • Demonstrated knowledge of information security tools such as Zeek, Suricata, and YARA
    • Demonstrated history of creating and maintaining detection rules and capabilities
    • Working knowledge of security investigation and incident response processes, particularly at enterprise-scale
    • Strong analytical skills related to detection engineering, including NSM/NDS systems, threat hunting, and threat identification
    • Familiarity with the capabilities of threat intel, malware analysis, and digital forensics
    • In-depth knowledge of networking concepts and protocols such as TCP/IP, HTTP, TLS, DNS, Kerberos, SMB
    • Experience working in an Agile work environment
    • Working knowledge of programming in at least two languages
    Qualifications - Required
    • Administrate, Configure, and Optimize
    • Corelight Fleet Manager
    • Corelight Sensor(s)
    • Zeek
    • Suricata
    • YARA
    • Network
    • Operating System (Windows)
    • Operating System (Linux)
    • Cloud (AWS, Azure, GCP)
    • Software Development / Automation
    • Use-Case Analysis
    • Zeek
    • Suricata
    • YARA
    • Splunk
    • Elastic
    • Endpoint Detection and Response (EDR)
    • Specialization
    • Security Fundamentals
    • Security Operations
    • Threat Hunting
    • Incident Response
    • Network Security
    • Professional
    • Project Management
    • Documentation
    • Training / Knowledge Share Delivery
    • Cross-functional collaboration
    • Mentoring
    Qualifications - Desired
    • Use-Case Analysis
    • Grafana
    • Humio
    • Specialization
    • Identity and Access Management
    • Governance and Compliance
    • Application Security
    • Mobile / IoT Security
    Physical Demands and Work Environment
    The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform the functions.
    While performing the duties of this position, the employee is regularly required to talk or hear. The employee frequently is required to use hands or fingers; handle or feel objects, tools, or controls. The employee is occasionally required to stand, walk; sit; reach with hands and arms; climb or balance, and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this position include close vision, distance vision, color vision, peripheral vision, and the ability to adjust focus. The noise level in the work environment is usually moderate.
    Note
    This job description in no way states or implies that these are the only duties to be performed by the employee(s) incumbent in this position. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. All duties and responsibilities are essential functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job successfully, the incumbents will possess the skills, aptitudes, and abilities to perform each duty proficiently. Some requirements may exclude individuals who pose a direct threat or significant risk to the health or safety of themselves or others. The requirements listed in this document are the minimum levels of knowledge, skills, or abilities. This document does not create an employment contract, implied or otherwise, other than an "at will" relationship.
    Equal Opportunity Employer
    CriticalTilt, Inc. is an Equal Opportunity Employer. Our policy is to provide equal employment to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status and/or other status protected by applicable law.

  • DETECTION ENGINEER

    3 weeks ago

    Only for registered members Herndon

    CriticalTilt blends 25+ years of specialized experience with a lean responsive approach delivering tailored solutions to government agencies and private sector clients. · ...

  • DETECTION ENGINEER

    5 days ago

    Only for registered members Herndon, VA

    Job summary · CriticalTilt blends 25+ years of specialized experience with a lean, responsive approach, delivering tailored solutions to government agencies and private sector clients. From navigating complex networks to adapting to new compliance demands, we understand our custo ...

  • Network intrusion detection engineer

    1 week ago

    Only for registered members Reston

    Safeguarding the critical IT assets of security-conscious organizations. · ...

  • Network Intrusion Detection Engineer

    1 month ago

    Only for registered members Reston

    WeareseekingahighlyskilledNetworke-IntrusionDetectionEngineertojoinourcybersecurityoperations. · ...

  • Cyber Detection Engineer

    1 month ago

    Only for registered members Ashburn

    The Leidos company is seeking an experienced Cyber Detection Engineer to join their team. As a member of the highly technical Operations Enhancement team supporting U.S. Customs and Border Protection (CBP), you will be responsible for in-depth technical analysis of network and en ...

  • Network Intrusion Detection Engineer

    1 month ago

    Only for registered members Reston

    We are seeking an experienced Network Intrusion Detection Engineer to join our cybersecurity team.The ideal candidate must possess strong Linux engineering expertise with experience managing YAML configuration files, · and how these configurations integrate and influence the Intr ...

  • Cyber Detections Engineer

    1 week ago

    Only for registered members Ashburn

    The Leidos pay range for this Cyber Detection Engineer position ranges from $154K to $278K annually. · Create security content to improve security posture of environment. · IDentify and investigate high priority threat campaigns. · Develop processes and procedures for new tools/t ...

  • Network Intrusion Detection Engineer

    1 month ago

    Only for registered members Reston, VA

    The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security. · ...

  • Cyber Detections Engineer

    2 weeks ago

    Only for registered members Ashburn $154,050 - $278,475 (USD)

    The Leidos company is seeking an experienced Cyber Detection Engineer to join their team. The engineer will be responsible for in-depth technical analysis of network and endpoint logs & activity. · Create security content for deployment on tools and technologies across the enterp ...

  • Detection Engineer

    3 days ago

    Only for registered members Washington

    We are seeking a Detection Engineer – Microsoft Sentinel & SOAR to support security engineering operations for federal government clients. · ...

  • Detection Engineer

    1 month ago

    Only for registered members Washington

    This is a full-time role for a Detection Engineer located in the Washington DC-Baltimore Or Colorado Springs, CO. The Detection Engineer will design, implement and maintain threat detection and response systems analyze potential security incidents develop detection mechanisms for ...

  • Detection Engineer

    2 days ago

    Only for registered members McLean, Virginia, United States

    We are looking for a Senior Detection Engineer to support an agency level contract defending the largest target in the world using your expertise in Host Based IDS, IPS and specialized network defense. · ...

  • Detection Engineer

    1 week ago

    Only for registered members Washington $100,000 - $175,000 (USD)

    As a fast-growing scale-up, we specialize in cutting-edge cybersecurity, predictive maintenance, and compliance for OT systems across defense, aerospace, and rail. · We exist to protect the service members who defend our nation and secure the critical systems that keep our econom ...

  • Detection Engineer

    2 days ago

    Only for registered members Washington, DC

    We are seeking a Detection Engineer to support security engineering operations for federal government clients. · Develop, tune, and maintain Microsoft Sentinel analytics rules and detection logicWrite and optimize advanced KQL queries for detections, threat hunting, and investiga ...

  • Detection Engineer

    1 week ago

    Only for registered members Washington, DC Remote job

    We are seeking a highly motivated and collaborative Detection Engineer to join our growing Research team. In this role your primary goal will be to understand exactly how cyber threat actors could attack operational technology (OT) systems (particularly serial data networks and e ...

  • Cyber Detections Engineer

    1 week ago

    Only for registered members Ashburn, VA

    The U.S. Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is responsible to prevent cyber threats through monitoring, intrusion detection services. Leidos seeks an experienced Cyber Detection Engineer to join our team. ...

  • Cyber Detection Engineer

    1 month ago

    Only for registered members Ashburn, VA

    The Leidos company seeks an experienced Cyber Detection Engineer to join their team. As a member of the highly technical Operations Enhancement team supporting U.S. Customs and Border Protection (CBP), you will be responsible for in-depth technical analysis of network and endpoin ...

  • Remote Detection Engineer Architect

    1 week ago

    Only for registered members Chantilly, VA Remote job

    We are seeking a dynamic Remote Detection Engineer Architect to join our cybersecurity team. In this pivotal role, you will design, develop and optimize advanced detection architectures to identify and mitigate sophisticated cyber threats across diverse network environments. Your ...

  • Cyber Detections Engineer

    4 weeks ago

    Only for registered members McLean, VA

    The position of Cyber Detection Engineer involves creating, editing, and managing signatures, rules and filters for specialized network defense systems. · ...

  • Detection and Response Engineer

    1 month ago

    Only for registered members Laurel $100,000 - $245,000 (USD)

    We are seeking a Detection & Response Engineer to help us hunt for sophisticated cyber threats operating in an actively changing cyber threat landscape. Perform real-time incident handling, independently following and creating procedures to analyze and contain malicious activity. ...

  • Detection and Response Engineer

    1 month ago

    Only for registered members Laurel, MD

    We are seeking a Detection & Response Engineer to help us hunt for sophisticated cyber threats operating in an actively changing cyber threat landscape. · Create novel detections in Python, SQL, and similar scripting languages based on a deep understanding of adversarial tradecra ...

Jobs
>
Detection engineer
>
Jobs for Detection engineer in Herndon