Security Engineer - Detection & Monitoring
Share on LinkedIn
We are building an Agile Security Operations team where you'll own the design and implementation of our threat detection and monitoring capabilities. This role offers an exciting opportunity for a security engineer who wants to take ownership of building comprehensive detection capabilities from the ground up, bridging the gap between security theory and operational reality.
What You'll Own
Detection Engineering & Strategy
- Design and implement custom detection rules for our AWS/ECS hybrid environment
- Build business cases for monitoring investments, translating technical requirements into business value
- Develop threat hunting capabilities and behavioral analysis frameworks
- Create and maintain detection logic for our SIEM platform (Sumo Logic/Elastic integration)
Monitoring Architecture
- Own the end-to-end monitoring strategy across cloud infrastructure, containers, and on-premise POS devices
- Design real-time alerting systems that minimize noise while maximizing threat visibility
- Build custom dashboards and operational intelligence for security and business stakeholders
- Integrate monitoring across our corporate infrastructure, AWS cloud, and Qu Point of Sale systems
Innovation & Automation
- Automate repetitive detection tasks using scripting and no-code/low-code platforms
- Develop automated response playbooks and SOAR integration
- Create innovative solutions for monitoring container workloads and serverless functions
- Build detection capabilities for emerging threats and attack vectors
Business Impact & Metrics
- Translate security events into business risk and operational metrics
- Develop KPIs that demonstrate the value of security monitoring to executive leadership
- Coordinate with engineering teams to embed security monitoring into development workflows
- Ensure monitoring supports SOC 2, PCI, and ISO compliance requirements
What You Bring
Technical Foundation
- 3+ years of experience in security engineering, monitoring, or detection with demonstrated bias for action
- Strong knowledge of SIEM platforms, log analysis, and security event correlation
- Experience with AWS security services (GuardDuty, CloudTrail, CloudWatch) and container environments
- Proficiency in scripting (Python, PowerShell) or automation tools to solve problems efficiently
Ownership Mindset
- Proven track record of taking ownership of complex technical challenges and driving them to completion
- Experience building monitoring systems from scratch or significantly improving existing capabilities
- Strong problem-solving skills with the ability to work independently and make decisions
- Customer-focused approach to internal stakeholders and business requirements
Innovation & Growth
- Experience with emerging technologies and willingness to experiment with new approaches
- Understanding of threat intelligence, behavioral analysis, and advanced detection techniques
- Familiarity with compliance frameworks and ability to translate requirements into technical controls
- Strong communication skills to present technical concepts to business stakeholders
- 1HR Screening
- 2Technical Interview I
- 3Technical Interview II
- 4Interview with the VP