Senior/Staff Security Engineer – Detection & Response
| Company | NexHealth |
|---|---|
| Location | San Francisco, CA, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior, Expert or higher |
Requirements
- 6+ years of experience working on a Security team focused on building detection platforms, writing detections and automating responses.
- Experience with AWS cloud infrastructure, databases, data warehouses, and web applications; familiarity with SIEM tools is a plus.
- Proficient in scripting languages (e.g., Python) and SQL.
- Strong understanding of modern adversary TTPs (Tactics, Techniques, and Procedures).
- Demonstrated ability to collaborate effectively with colleagues, manage and execute tasks, and prioritize efforts to mitigate risks.
Responsibilities
- Identify essential detections, necessary logs, log sources, attributes, and platforms to write high value detection rules.
- Define, develop, test, and refine alerting rules to minimize false positives and improve our signal-to-noise ratio, ensuring our detection systems are both efficient and effective.
- Streamline response processes by creating detailed Incident Response (IR) runbooks and developing Security Orchestration, Automation, and Response (SOAR) capabilities to reduce manual intervention and enhance response times.
- Improve detection coverage and accuracy across all monitored systems and applications.
- Facilitate security incident response in a collaborative, cross-functional setting, and lead to the resolution from threats originating both internally and externally.
- Adapt, learn and grow to become a contributor across various areas of security within the broader team.
Preferred Qualifications
-
No preferred qualifications provided.