Senior Threat Detection Engineer - SIEM and Cloud Security (GenAI)

Requirements:

• Experience in Generative AI Security and knowledge of MITRE ATLAS threat techniques
• Experience in detection engineering, threat research, SOC operations, or incident response
• Ability to write or validate detections using query languages like EQL, KQL, or SQL
• Strong analytical and problem-solving skills
• Clear, collaborative communication and willingness to learn

Nice to Haves:

• Understanding of Elastic Security Solution, query languages, or Elastic Common Schema
• Experience with security control testing or attack path validation platforms
• Ability to script test telemetry using Python, Bash, or PowerShell
• Contributions to community detection content or security rule repositories

What you'll be doing:

• Creating and refining detection logic across multiple domains using Elastic data sources
• Validating rule behavior through testing and tuning
• Evaluating attack paths and contributing to coverage improvements
• Analyzing telemetry to uncover detection opportunities
• Collaborating with senior researchers and participating in detection package updates

Perks and Benefits:

• Competitive pay based on performance
• Health coverage for you and your family
• Flexible work locations and schedules
• Generous vacation days and parental leave
• Matching donations and volunteer project hours