We have a current opportunity for a SOC Detection Engineer & Developer on a contract basis. The position will be based in Paris. For further information about this position please apply.
The Security Operations Center team is looking for a Detection engineer to contribute to SOC solutions design and implementation to improve security detection & response by bringing more automation and extending the SOC coverage,
As a Detection Engineer within the Global SOC, you will be responsible for developing and maintaining the detection capabilities that protect our organization from a wide range of cyber threats. You will work closely with the Detection Engineering Lead Principal and collaborate with other SOC teams, including incident detection, threat intelligence, threat hunting, and incident response, to ensure our detection strategies are robust and effective. Your primary focus will be on designing, implementing, and fine-tuning detection use cases and analytics rules across various security platforms (Azure Data eXplorer, Sentinel, Cyber Reason...).
Key activities and deliverables
- Design and implement detection logic to identify cyber threats across network, endpoint, and cloud environments, ensuring comprehensive coverage of potential attack vectors.
- Utilize log analysis, pattern recognition, and anomaly detection techniques to identify and respond to security incidents effectively.
- Develop custom detection rules and automation scripts using scripting languages (e.g., Python, PowerShell) and analytics query languages like Kusto Query Language (KQL) to enhance the SOC's detection capabilities.
- Apply strong analytical and problem-solving skills to critically assess and optimize detection mechanisms, minimizing false positives and enhancing detection accuracy.
- Communicate and collaborate effectively with global teams to ensure the successful deployment and optimization of detection mechanisms across diverse environments.
- Demonstrate self-motivation and the ability to work independently or as part of a team in a dynamic and fast-paced environment.
- Commit to continuous learning and staying abreast of the latest trends and developments in cybersecurity to continuously enhance detection and response capabilities.
- Fluent in English with strong verbal and written communication skills to effectively convey complex technical concepts and findings.
