EGS is looking for a Threat Detection Expert that can build frameworks from the group up.
Responsibilities:
In this role, you will be working with a commercial company's security team to create and build new solutions to challenging problems. In performing this role, you will be required to:
- Work with the customer to establish a mature Insider threat monitoring capability across multiple windows, Linux, and container environments.
- This person will be leading the development of new alerting frameworks
- Execute a dual mandate over a designated time period to:
- Develop detection logic in the customer SIEM solution.
- Architecting and deploying detections from the ground up
- Support the migration of logic, queries, and visualizations into a new SIEM solution.
- Work with the customer to improve incident response efficiencies.