Job description

CYREBRO is the first interactive SOC Platform, transforming how today’s businesses respond to and mitigate cyber threats with a centralized security operations infrastructure. The platform provides complete clarity, insight, and real-time cyber recommendations for businesses of all sizes by integrating all of their security events into one central command.

We are seeking a Detection Engineer to join CYREBRO's Research team as a key contributor. In this role, you will analyze emerging threats and enhance the detection capabilities of our Security Data Lake (SDL). Combining threat research expertise with hands-on engineering skills, you will develop and maintain robust detection mechanisms. Collaborating closely with researchers, forensics specialists, and incident responders, you will conduct in-depth security event analysis and implement effective detection strategies.

Responsibilities:

Design, develop, and optimize threat detection rules for both new and existing data sources
Lead the integration of new data sources into our detection engine
Perform post-production analysis to tune and refine detection capabilities
Conduct thorough threat simulations and develop attack scenario POCs
Mentor junior team members and contribute to the team's technical growth
Maintain and improve existing detection capabilities
Collaborate with incident response teams to enhance detection accuracy

Requirements:

Minimum 3 years of experience in detection engineering, security research, threat research, or red team operations
Strong expertise in SIEM/XDR systems, with ability to architect detection solutions
Advanced SQL skills for complex query development and optimization
Deep understanding of domain environments, operating systems, and enterprise architecture
Proven experience with common security tools (EDR, IDS/IPS, WAF)
Demonstrated proficiency in cloud environments (GCP, AWS, Azure)
Experience with detection frameworks and tools (YARA, SIGMA, Snort, MITRE ATT&CK)

Desired Skills: