We are seeking a highly skilled and experienced Detection DevOps Engineer to join our team. This role involves developing, deploying, and maintaining Detection-as-Code solutions, automated detection processes, and data integration solutions.
Job Description
The ideal candidate will have strong experience designing, implementing, and maintaining CI/CD pipelines using tools like GitHub, Azure DevOps, Jenkins, GitLab, or similar platforms. Additionally, they should be proficient in Python, PowerShell, or Bash for tooling, automation, and scripting related to detection content and processes.
* Design and Implement CI/CD Pipelines: Help design, implement, and maintain complete CI/CD tool chains used by the Threat Detection team to automate testing, validation, and deployment of detection rules across customer environments in Azure platform.
* Enable Detection-as-Code Workflows: Enable and support Detection-as-Code workflows, ensuring that detection content is version-controlled, peer-reviewed, and seamlessly integrated into production.
* Develop Tooling and Automation: Develop and maintain tooling (primarily in Python) to streamline detection engineering automation, improve operational efficiency, and reduce manual intervention.
* Collaborate with Cross-Functional Teams: Work closely with Detection Engineers, Backend and Frontend Engineers, Data Science, Architecture, and SOC teams to enhance MDR platform capabilities and align on service improvements.
* Validate and Optimize Detection Rules: Contribute to validating and optimizing detection rules through automated testing and threat emulation tools to reduce false and benign positives and enhance detection accuracy.
* Monitor and Improve Pipeline Performance: Continuously monitor, troubleshoot, and improve pipeline performance and detection delivery reliability, ensuring operational efficiency.
* Document Processes and Solutions: Document CI/CD pipeline, automated workflows, processes, and data integration solutions. Share knowledge and best practices across teams.
Requirements
* Strong Experience in Detection Engineering and DevOps: 3+ years in detection engineering, DevOps, or related fields, with a focus on cybersecurity.
* Proficiency in Python, PowerShell, or Bash: Proficiency in Python, PowerShell, or Bash for tooling, automation, and scripting related to detection content and processes.
* Familiarity with CI/CD Tools: Strong experience designing, implementing, and maintaining CI/CD pipelines using tools like GitHub, Azure DevOps, Jenkins, GitLab, or similar platforms.
* Knowledge of Cloud Platforms: Experience with cloud platforms, especially Azure, and familiarity with Infrastructure-as-Code tools like Terraform or ARM templates.
* Understanding of Security Technologies: Familiarity with MITRE ATT&CK and its application in detection engineering, along with an understanding of security technologies such as EDR, IDS/IPS, SIEM, and XDR solutions (e.g., Microsoft Sentinel).
Bonus Requirements
* Experience with Microsoft Security Solutions: Experience with Microsoft Sentinel, Defender for Endpoint, Defender for Identity, and other Microsoft security solutions.
* Experience with Red Teaming or Adversary Simulation: Experience in red teaming or adversary simulation, with a focus on threat emulation, attack paths, and vulnerability exploitation to improve detection strategies.
* Knowledge of IaC Tools: Experience with Terraform, Bicep, Pulumi, or other IaC tools for automating cloud infrastructure deployments.
About Us
We are committed to providing a safe and inclusive work environment where employees can grow and thrive. We offer competitive salaries, great benefits, and access to management and Microsoft training.
What We Offer
We are proud to be recognized as a top place to work. Our diverse and talented team is dedicated to delivering exceptional results and making a positive impact in the world.
Contact Information
If you are passionate about detection engineering and DevOps, and possess the skills and qualifications required for this role, we would love to hear from you. Please submit your application, and our talent acquisition manager will be in touch to discuss further.