Cyber Security Engineer

About the role

Join a diverse Security Operations Center focused on real‑time detection, analysis, and response to security incidents. You will work alongside experienced cyber security specialists across threat intelligence, incident response, cloud security, and more, contributing to a resilient enterprise security posture.

Key responsibilities

• Design, implement, configure, and maintain security platforms such as SIEM, XDR, SOAR, threat‑intelligence, and vulnerability‑management tools.
• Integrate security tools into on‑premise and cloud infrastructure, ensuring scalable and resilient logging pipelines using ASIM/KQL.
• Develop, tune, and maintain detection analytics aligned with MITRE ATT&CK techniques, including behavioral and anomaly‑based detections.
• Reduce false positives through structured tuning and validation processes.
• Create and manage security automation workflows, SOAR playbooks, and API integrations to streamline repetitive tasks.
• Leverage AI‑powered tools like Microsoft Security Copilot for enhanced detection analysis and response.
• Embed security controls into CI/CD pipelines, support Azure and AWS cloud services, and contribute to container/Kubernetes security architecture.
• Provide engineering support during critical incident response and develop automation for recurring remediation patterns.
• Maintain documentation of detection logic, automation workflows, and system architecture; deliver training for SOC analysts.

Required profile

• 3–5 years of experience in cybersecurity engineering, detection engineering, or security platform engineering.
• Proven experience working in an enterprise‑scale SOC or security engineering environment.

Required skills

• SIEM, XDR, SOAR platforms
• Threat‑intelligence and vulnerability‑management tools
• ASIM/KQL for log normalization
• MITRE ATT&CK framework
• Microsoft Security Copilot or similar AI security tools
• Azure and AWS cloud environments
• CI/CD pipeline integration and DevSecOps practices
• Container and Kubernetes security concepts
• Scripting and API integration (e.g., PowerShell, Python)