JSOC - Senior Detection Engineer
6d6 days agoQuestrade Financial Group
Rosario, AR · Full-time · $140,000 – $200,000
About this role
Questrade Financial Group uses cutting-edge technologies to develop innovative products that give customers better ways to take control of their money. We are everything a traditional financial institution is not, constantly moving forward and bringing the future of fintech into existence. Join a collaborative team that cares deeply about our mission.
As Senior Detection Engineer, own the quality and effectiveness of the detection portfolio by creating, tuning, validating, and retiring alerts that drive security outcomes. Author and test detection rules, maintain alert coverage and fidelity, and reduce false positives. Collaborate with SOC analysts, SIEM Engineers, CTI Specialists, internal customers, and vendor support teams.
Work closely with Cybersecurity and IT teams to align priorities, execute new initiatives, and contribute to process improvements. Build documentation for new tools while utilizing security tools in accordance with corporate policies and growing business needs. Thrive in a culture of innovation where technology serves people and AI acts as a collaborative enabler.
Explore, discover, and learn with continuous growth in a diverse and inclusive hybrid working environment. Unleash creativity and curiosity with no limits alongside forward-thinking individuals integrating AI for efficient employee experiences and customer solutions. Shape a future where AI empowers teams and delivers unparalleled customer experiences.
Requirements
- Experience authoring and testing detection rules for SIEM platforms
- Proficiency with MITRE ATT&CK framework for coverage gap analysis
- Skills in tuning alerts to minimize false positives and enhance fidelity
- Knowledge of purple-team exercises and threat validation techniques
- Familiarity with SOC operations and collaboration with analysts and CTI specialists
- Ability to document detections including rationale and runbooks
- Understanding of alert prioritization and severity frameworks
Responsibilities
- Author, test, and deploy detection rules aligned to MITRE ATT&CK coverage gaps
- Maintain the detection portfolio: track coverage, false positive rates, alert fidelity, and relevance
- Validate alerts through purple-team exercises and real-world scenario testing
- Tune detection logic to reduce false positive rates and improve signal-to-noise ratio
- Document detection rationale, expected behavior, and runbook references for each alert
- Build and maintain alert severity frameworks and prioritization logic
- Retire stale or redundant detections with documented justification and communication
- Produce monthly detection metrics including coverage by ATT&CK tactics
Benefits
- Health & wellbeing resources and programs
- Paid vacation, personal, and sick days for work-life balance
- Career growth and development opportunities
- Opportunities to contribute to community causes
- Work with diverse team members in an inclusive and collaborative environment
- Hybrid working environment
Similar roles
Application Security Engineer II
6d6 days agoCME Group
Bengaluru, IN · Full-time · INR 2,500,000 – INR 4,500,000
Threat Detection Engineer
6d6 days agoLeidos
Arlington, US · Full-time · $131,300 – $237,350
Detection Engineer
6d6 days agoOTP Bank
Budapest, HU · Full-time
Senior Application Security Engineer
6d6 days agoFree
Paris, FR · Full-time · €70,000 – €95,000