Legato Security · 1 day ago
Threat Detection Engineer
Salt Lake City, Utah, United States
Full-time
Onsite
Entry, Mid Level
3+ years expLegato Security is an information security firm dedicated to helping organizations secure their data. They are seeking a motivated Detection Engineer to assist with detection engineering efforts, including rule creation, documentation, and collaboration with SOC analysts.
Network Security
Responsibilities
Create, improve, review, and tune detection rules in various SIEMs (e.g., Sumo Logic, Google SecOps, Stellar Cyber). This will include log reviews of customer environments to make informed decisions
Assist in creating and maintaining documentation for detection procedures, workflows, and active projects
Collaborate with SOC analysts to improve detection accuracy and reduce false positives
Help maintain and update detection use cases based on emerging threats and customer-specific logs
Assist in creating regular reports on detection metrics and effectiveness
Review and respond to internal and customer requests to assist with anything related to detection engineering
Contribute to declarative and imperative programming projects to assist with detection as code
Qualification
Required
Bachelor's degree in Computer Science, Cybersecurity, related field or equivalent industry experience
3-5 years of experience in detection engineering or a related field (e.g., SOC Analyst, Pen Testing, IT Infrastructure, Network Engineering, or Software Development). Job-specific experience in detection engineering is not required
Familiarity with networking principals (e.g. routing, common protocols, firewall functionality, etc.)
Basic understanding of Windows operating systems (e.g. versions, common exploits, understanding of registries, exposed protocols, common enumeration commands, etc.)
Active Directory Fundamentals (e.g. basic understanding of NTLM and Kerberos, how to use LDAP, understanding of common attacks within Active Directory.)
Understanding of Detection as Code and common exploits
Strong interest in pursuing a career in detection engineering
Ability to quickly learn different tool sets and environments
Strong written and verbal communication skills
Ability to prioritize multiple competing projects, meet deadlines, and work effectively in a team environment
Preferred
Applicants who demonstrate personal learning and curiosity through personal projects will be prioritized. e.g. home labs, personal Github projects, write-ups, blog posts, Hack the Box profile, TryHackMe profile
Relevant certifications such as OSCP (Offsec), OSDA (Offsec), CPTS (HTB), CDSA (HTB), etc
Benefits
Competitive medical and dental benefits for employee and family members
Other voluntary benefits such as short-term disability, life insurance, children’s orthodontia, with additional voluntary benefits available
Flexible Paid Time Off policy
Professional Development opportunities specific to role
Company
Legato Security
Legato Security provides comprehensive cybersecurity expertise designed to provide 24/7 monitoring and immediate response to threats.
51-200 employees
Funding
Current Stage
Growth StageTotal Funding
unknown2024-06-18Series A
Leadership Team
Tim Hastings
Chief Information Security Officer
Recent News
Help Net Security
2024-04-08
2024-02-27
Company data provided by crunchbase