Senior Detection
4 weeks ago
Imagine yourself as a SOC analyst and a new alert shoots to the top of the queue. You open the alert and all of the relevant facts are laid out for you. You know the who, the what, and the where of what happened and it's all right there in the alert. You notice the attacker IP immediately and wonder, "Where is that IP located?". Wonder no more because the IP has already been fully enriched with all publicly available information This looks bad; just as you're about to shift to the EDR console to see what kind of damage was done, you notice further down that's already been provided for you. You have full context of everything that happened before, during, and after this event, and it's confirming your suspicions. You raise the alarm and notify the customer that you're digging into a potential security incident, and it only took 20 seconds to make that decision.
Now imagine you are the one who created that alert. You understand security operations and have a keen understanding of what information is needed to make an informed decision about a potential attack. You know the sort of enrichment needed to provide the right context about the facts of the alert. You have studied the metrics from previous investigations and know where analysts get tripped up or slowed down on decisions during the moments that matter. You streamline the response process through automation and make sure the decisions can be made quickly. Now imagine that the SOC analyst never even needed to triage the alert because of your automations; it was automatically promoted to an incident for the SOC.
You also enjoy working together on a team to prioritize the problems that matter and work toward a solution. You have a high degree of empathy and understand the demands of working in a SOC environment. You understand that scaling operations doesn't always mean scaling with more people; the real strength comes when you can arm analysts with the tools they need to become superheroes.
Does this sound like you? At Expel, we're taking a new approach to managed security. We spend our time trying to discover ways to keep our customers safe and our security analysts happy. We're trying to meet our customers where they are—understanding a vast number of attacker tactics, security vendor capabilities, and customer requirements. We believe innovating while handling the combinatorial explosion represents a captivating problem. If you agree, we may have the job for you
What Expel can do for you- Place you into the middle of a fast-growing cybersecurity company with the most enthusiastic customers you've ever seen—a welcome surprise in the MSSP/MDR market.
- Give you an opportunity to collaboratively drive a significant security capability of the business.
- Enable you to learn from analysts, data scientists, engineers, and responders responsible for various components of Expel's service and technology.
- Facilitate ways to harness event signal from cloud service providers.
- Provide an entertaining small and highly transparent startup environment.
- Challenge you to push the boundaries of our security vision.
- Provide access to popular EDR, network, and SIEM technologies.
- Architect, maintain, and iteratively improve Expel's ability to detect and investigate threats using integrated technologies with limited direction.
- Continuously improve Expel's detection strategy and capability through creation of detections for Expel's proprietary rule engine.
- Maintain documentation in support of Expel's detection and response content.
- Improve SOC analyst efficiency by automating investigative workflows using an orchestration framework written in Python.
- Collaborate with engineering on Expel's integrations and engineering standards associated with each class of integration.
- Evaluate technology APIs to design detection and response solutions to drive value and efficiency in Expel's Workbench platform.
- Contribute to and thrive in a culture of experimentation, agile, quality, and continuous improvement among the team.
- Take a leading role in the team's research and monitoring of the latest threat landscape and subsequent detection and response automation development.
- Communicate effectively with stakeholders on support requests surfaced to the D&R engineering team.
- Mentor less experienced team members and SOC analysts.
- Bridge the Engineering to effectively identify new platform features and tools to better enable the growth of our detection and response capabilities.
- 3+ years of experience with detection and response tools, particularly EDR, NSM, and SIEM.
- 3+ years of experience writing, deploying, and tuning custom detections based on research or investigative work against common data sets (Windows Event Logs, auditd, CloudTrail, and similar datasets).
- Proficiency in Python, Go, or other object-oriented programming languages.
- Strong understanding of Windows, macOS, and Linux operating systems and command line tools.
- Knowledge of networking basics, such as TCP/IP and OSI model.
- Expert knowledge and observations of attack vectors, threat tactics, and attacker techniques.
- Intermediate knowledge of cloud infrastructure platforms and their Identity and Access Management (IAM) models.
- Cursory understanding of common Software-as-a-Service (SaaS) applications and available security signals.
- Bachelor's degree in Computer Science or Information Security strongly preferred.
- 5+ years of professional experience in information technology or security operations would be ideal but not required.
Pay range: €85,700 EUR to €124,300 EUR + bonus eligibility and equity.
We believe in paying transparently and equitably. Your salary will ultimately be based on factors such as your experience, skills, team equity, and market data. You'll also be eligible for unlimited PTO (which we model and encourage), work location flexibility, up to 24 weeks of parental leave, and really excellent health benefits.
We're only hiring those authorized to work in the United States. We do not currently sponsor immigration visas.
We're an Equal Opportunity Employer: You'll receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.
We'll ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please let us know if you need accommodation of any kind.
#LI-Remote
#J-18808-Ljbffr-
Advanced Threat Detection Engineer
1 day ago
Dublin, Dublin City, Ireland Amazon Full timeJob SummaryWe're looking for a skilled software development engineer to join our team as a Senior Software Development Engineer, AWS Security. As a member of our team, you'll have the opportunity to work on advanced threat detection and mitigation projects, collaborating with security engineers and data scientists to design and implement innovative security...
-
Dublin, Dublin City, Ireland Amazon Full timeAbout the Job:We are seeking a highly skilled Senior Applied Scientist to join our team and contribute to the development of cutting-edge technologies in sensitive content detection and mitigation.Key Responsibilities:Design and implement novel algorithms and modeling techniques to advance the state of the art in NLP and CV related tasksCollaborate with...
-
Senior Cybersecurity Professional
3 days ago
Dublin, Dublin City, Ireland Engineeringuk Full timeIn our organization, security is central to maintaining customer trust and delivering delightful customer experiences. As a Senior Security Engineer, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across our cloud infrastructure.">Experience creating threat detections in enterprise...
-
Senior Cloud Security Engineer
4 weeks ago
Dublin, Dublin City, Ireland Intercom Full timeWhat's the opportunity?As a Senior Cloud Security Engineer you will have experience in investigating advanced threats, detecting cloud-native attacker techniques, and securing AWS environments, with a focus on technical controls, incident response, and detection engineering. You will be working with other engineering teams to identify & mitigate risks across...
-
Senior Security Analyst
2 weeks ago
Dublin, Dublin City, Ireland HubSpot Full timePOS-20111Senior Security Analyst (Detection Engineering & Automation)In the Senior Security Analyst (Detection Engineering & Automation) role, you will help strengthen and augment our detection engineering program. You will build use cases and write detection logic on a variety of security platforms to detect malicious activity in various attack stages. You...
-
Senior Security Engineer
2 weeks ago
Dublin, Dublin City, Ireland SumUp Inc. Full timeSenior Security Engineer (Threat Detection and Response)Dublin, Ireland · ITAbout the team:Join our innovative and growing Security Operations (SecOps) Team, where we are dedicated to protecting our organization from evolving threats. We are looking for a skilled and passionate Senior Security Engineer to focus on Threat Detection and Response in a dynamic,...
-
Senior Security Engineer
1 week ago
Dublin, Dublin City, Ireland SumUp Inc. Full timeSenior Security Engineer (Threat Detection and Response)Dublin, Ireland · ITAbout the team:Join our innovative and growing Security Operations (SecOps) Team, where we are dedicated to protecting our organization from evolving threats. We are looking for a skilled and passionate Senior Security Engineer to focus on Threat Detection and Response in a dynamic,...
-
Senior Security Engineer, AWS Security
4 weeks ago
Dublin, Dublin City, Ireland Amazon Full timeJob ID: 2834809 | Amazon Data Services Ireland LimitedCome and build innovative services that protect our cloud from advanced security threatsAs a Senior Security Engineer on our team, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure, including advanced persistent threats....
-
Senior Security Engineer, AWS Security
3 weeks ago
Dublin, Dublin City, Ireland Amazon Full timeJob ID: 2834809 | Amazon Data Services Ireland LimitedCome and build innovative services that protect our cloud from advanced security threatsAs a Senior Security Engineer on our team, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure, including advanced persistent threats....
-
Senior Security Engineer
1 week ago
Dublin, Dublin City, Ireland Squarespace Full timeSquarespace is looking for a Senior Security Engineer to work alongside a dedicated team responsible for monitoring and responding to attacks across Squarespace and its subsidiaries. The ideal candidate will play a crucial role in enhancing our security posture by developing robust playbooks, crafting effective alerts, and actively participating in the...
-
Senior Cloud Security Engineer
2 weeks ago
Dublin, Dublin City, Ireland Intercom Full timeIntercom was founded in 2011 to change the standard of customer service online. Our AI-first customer service platform is a totally new way to deliver customer service and is designed to transform the way businesses interact with their customers through AI. We all know that customer service on the internet sucks. It's slow and impersonal. We help businesses...
-
Senior Cloud Security Engineer
1 week ago
Dublin, Dublin City, Ireland Intercom Full timeIntercom was founded in 2011 to change the standard of customer service online. Our AI-first customer service platform is a totally new way to deliver customer service and is designed to transform the way businesses interact with their customers through AI. We all know that customer service on the internet sucks. It's slow and impersonal. We help businesses...
-
Senior Security Engineer Ireland
3 weeks ago
Dublin, Dublin City, Ireland Chronos Consulting Full timeJob Description Our client is a world-renowned US startup in the field of automation. This California unicorn is still a private enterprise experiencing hypergrowth. They are looking for an exceptional Senior Security Engineer to join their team as they build their defensive security capabilities. This is a full-time, permanent role. Hybrid or...
-
Senior Cloud Security Engineer
7 days ago
Dublin, Dublin City, Ireland Tn Ireland Full timeSocial network you want to login/join with: Intercom was founded in 2011 to change the standard of customer service online.Our AI-first customer service platform is a totally new way to deliver customer service and is designed to transform the way businesses interact with their customers through AI.We all know that customer service on the internet sucks.It's...
-
Senior Architect
2 weeks ago
Dublin, Dublin City, Ireland Huawei Ireland Research Center Full timeAbout the job:At Huawei Cloud, we're revolutionising the way cloud systems operate. We're seeking a Senior Architect to join our cutting-edge AIOps team in Dublin. In this role, you'll spearhead the research and development of advanced solutions for observability, incident response, system optimisation, and fault prediction for planet-scale cloud...
-
Senior Architect
1 week ago
Dublin, Dublin City, Ireland Huawei Ireland Research Center Full timeAbout the job:At Huawei Cloud, we're revolutionising the way cloud systems operate. We're seeking a Senior Architect to join our cutting-edge AIOps team in Dublin. In this role, you'll spearhead the research and development of advanced solutions for observability, incident response, system optimisation, and fault prediction for planet-scale cloud...
-
Dublin, Dublin City, Ireland Amazon Full timeJob Description:We are looking for an experienced Senior Applied Scientist to build industry-leading technologies in attribute extraction and sensitive content detection across all languages and countries.About the Role:This Senior Applied Scientist will lead the science solution design, run experiments, research new algorithms, and find new ways of...
-
Senior Network Engineer
2 weeks ago
Dublin, Dublin City, Ireland Zurich Insurance Company Full timeBackground Zurich Dublin Technology Center is looking for a Senior Network Engineer (SDWAN and Tooling Automation) Reporting to the regional head of Networks, the Senior Network engineer will play a key role within our experienced EMEA network team. Supporting our current and future business connectivity requirements, working with our network...
-
Senior Network Administrator
7 hours ago
Dublin, Dublin City, Ireland Temple Recruitment Full timeAbout the RoleThe Senior Network Administrator will be responsible for designing, implementing, and managing the company's network infrastructure. This is a highly technical role that requires expertise in network architecture, protocols, and security.Key Responsibilities:Design and implement network architecture to support business growth and...
-
Dublin, Dublin City, Ireland Tbwa ChiatDay Inc Full timeFastSpring is the trusted ecommerce platform, partnering with software and SaaS companies globally to enhance product sales and foster global competition. With over 10 million transactions annually for 3,500+ companies across 200 countries, our platform supports transactions in every major currency. Recognized for workplace excellence and backed by AKKR, we...
