Engineer IV -Threat Detection

Innovate here. And see your ideas come to life.

It's an exciting time to work in tech at Edward Jones. We are making massive investments in emerging technologies to improve how we work with our clients and with each other. Relationships are the focus of our business model. And working in Technology here means using your skills to build, deliver and maintain the technologies that enable us to deepen and support those relationships. The best part? We develop and create our own industry-leading solutions internally. And you can be a part of it. Working with emerging new technologies. Creating platforms, programs and experiences that change how we work together - and support our client-first focus. Changing the future of our firm, the industry and the advisor-client relationship. **

Job Overview**

Position Schedule: Full-Time **

Team Overview**

Threat Management consists of detection engineers and cyber threat intelligence analysts whose mission is to provide actionable intelligence and utilize enhanced threat detection techniques to remediate coverage gaps and improve the security posture of the Firm. We sit under the CISO's security organization and are looking for a senior detection engineer to join our mostly remote team. The position is fully remote (within the US or Canada) and the Firm funds an annual trip to US headquarters to allow teams to bond in person and develop better rapport with local onsite teams. **

What You'll Do**

• Lead by example in demonstrating, teaching, effectively communicating, and instilling industry best practices of detection engineering among your detection engineering team members.
• Develop, maintain, and clearly document custom detection queries, data models, threat models, workflows, processes, and platform and attack technique research; review team member work for completeness and accuracy.
• Onboard 3rd party security detections to increase the firm's coverage and partner with Red Team to validate existing detections and address findings.
• Use structured workflows to prioritize detection engineering efforts.
• Leverage your experience to identify opportunities for automation, metrics, new tooling, and general process and workflow improvements.
• Analyze malicious code, scripts, attack techniques, or exploits to identify detection telemetry generated at a host and/or network level.
• As needed, guide complex digital investigations promptly to fully understand and articulate activity.
• Troubleshoot data/detection issues and collaborate with other teams to find resolution.

Benefits

At Edward Jones, we value and respect our associates and their contributions, and we recognize individual efforts through a rewards program that promotes a long-term career, financial security and well-being. Visit our career site to learn more about our total compensation approach, which in addition to base salary, typically includes benefits, bonuses and profit sharing. The salary range for this role is based on national data and actual pay is based on skills, experience, education, and other relevant factors for a potential new associate:

Hiring Minimum: $96471

Hiring Maximum: $164262 **

Skills/Requirements**

What Experience You'll Need

• Bachelor's degree in Computer Science, Engineering, or Information Systems or related field preferred; or equivalent related work experience.
• Minimum of 10 years of meaningful Information Systems Security experience, with at least 5 years in a SOC or working in Detection/Response during which you analyzed data from multiple log sources (e.g. firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends, anomalies, and suspicious or malicious activity.
• Experience with detections involving technologies such as cloud solutions, O365, and Kubernetes and advanced SIEM queries; bonus for KQL.
• Experience with writing proof of concept code for attack techniques on Windows and Linux operating systems.
• Ability to evaluate threat intelligence and collaborate with CTI analysts to identify detection opportunities.
• Excellent written and verbal communication skills to describe security event details and technical analysis.
• Expert threat detection knowledge and intuition, including a deep understanding of how adversaries move through a network, how that translates into detection opportunities, and the security issues and risks they pose.
• Scripting experience in at least one language, preferably Python

Candidates that live within in a commutable distance from our Tempe, AZ and St. Louis, MO home office locations are expected to work in the office three days per week, with preference for Tuesday through Thursday.

Awards & Accolades

At Edward Jones, we are building a place where everyone feels like they belong. We're proud of our associates' contributions to the firm and the recognitions we have received.

Check out our U.S. awards and accolades: Insights & Information Blog Postings about Edward Jones

Check out our Canadian awards and accolades: Insights & Information Blog Postings about Edward Jones **

About Us**

Join a financial services firm where your contributions are valued. Edward Jones is a Fortune 500¹ company where people come first. With over 8 million clients and 19,000 financial advisors across the U.S. and Canada, we're proud to be privately-owned, placing the focus on our clients rather than shareholder returns.

Behind everything we do is our purpose: We partner for positive impact to improve the lives of our clients and colleagues, and together, better our communities and society. We are an innovative, flexible, and inclusive organization that attracts, develops, and inspires performance excellence and a sense of belonging.

People are at the center of our partnership. Edward Jones associates are seen, heard, respected, and supported. This is what we believe makes us the best place to start or build your career.

View our Purpose, Inclusion and Citizenship Report.

1Fortune 500, published June 2023, data as of December 2022. Compensation provided for using, not obtaining, the rating.

Edward Jones does not discriminate on the basis of race, color, gender, religion, national origin, age, disability, sexual orientation, pregnancy, veteran status, genetic information or any other basis prohibited by applicable law.