Job Title: Detection & Response Engineer
Role Overview
We are seeking a proactive and technically strong Detection & Response Engineer to enhance our Security Operations capabilities. This role focuses on SIEM engineering, detection development, and SOC process improvement. You will play a key role in improving threat detection coverage, reducing response times, and strengthening overall security monitoring.
Key Responsibilities
* Work hands‑on with Google SecOps and Splunk SIEM platforms
* Identify required log sources and lead log onboarding and normalization into the SIEM
* Design, build, and tune detections, correlation rules, and alert logic
* Develop and maintain SOC playbooks and response runbooks
* Collaborate with SOC analysts and incident responders to improve detection and response workflows
* Continuously optimize SIEM content to reduce false positives and improve alert quality
* Support incident response and threat‑hunting activities as needed
* Align detections with frameworks such as MITRE ATT&CK
Required Skills & Experience
* Hands‑on experience with Google SecOps
* Strong practical experience with Splunk SIEM
* Proven experience onboarding and parsing log sources
* Experience building detections and correlation rules
* Experience creating SOC playbooks/runbooks
* Solid understanding of SOC operations and incident response processes
* Knowledge of attacker tactics, techniques, and procedures (TTPs)
Preferred Skills
* Threat hunting experience
* Scripting or automation skills (e.g., Python)
* Security certifications (e.g., GCIA, GCIH, Splunk certifications)
* Experience with cloud security monitoring
Ideal Candidate Profile
* Analytical and detail‑oriented
* Strong problem‑solving mindset
* Able to work in fast‑paced SOC environments
* Good communication and collaboration skills
For more Information and to apply contact me at jude.russell@next-ventures.com
#J-18808-Ljbffr