Lead, Detection Engineer - Cyber Defense & Response

About The Position

Requirements

• All Specialist-level capabilities plus elevated expectations in leadership, strategy, and influence:
• Extensive experience in detection engineering, incident response, threat hunting, or similar security operations roles, with a proven ability to lead complex technical initiatives.
• Expert understanding of Risked based alerting strategies and detection methodologies, capable of designing enterprise-wide detection models and influencing risk scoring frameworks.
• Deep knowledge of large enterprise architectures, including networks, operating systems (Windows, macOS, Linux), cloud ecosystems, and modern telemetry pipelines.
• Expert-level understanding of adversarial frameworks including MITRE ATT&CK and the Cyber Kill Chain, with demonstrated ability to translate them into operational detection logic.
• Advanced proficiency in Splunk Enterprise Security (ES) and its architecture, including correlation searches, risk frameworks, data models, and performance optimization.
• Advanced experience with SPL and KQL, including designing scalable, optimized, and maintainable detection libraries.
• Strong familiarity with SOAR, CI/CD, code repositories, and engineering pipelines, with the ability to influence development best practices for detection content.
• Ability to lead with inclusivity, leveraging diverse ideas and perspectives to achieve better analytical outcomes and team performance.
• Demonstrated leadership in continuous learning, staying ahead of emerging technologies, threats, and engineering methodologies.
• Exceptional communication and collaboration skills, with the ability to influence across technology, security, and business stakeholders.
• Applied experience with several of the following: Cyber Detection Engineering Cyber Threat Hunting Cyber Threat Intelligence Digital Forensics & Incident Response Security Automation & Orchestration (Python-based) Insider Risk Investigations

Nice To Haves

• Industry relevant certifications such as GDAT, GCDA, GCTD, GCTI, GMON, GPEN, GCIH, GCFA, OSCP, OSCE, OSWE, or equivalent.

Responsibilities

• Lead the design and implementation of enterprise-scale cyber threat detection capabilities across diverse technologies, ensuring accuracy, resilience, and alignment with risk priorities.
• Drive advanced research into adversarial TTPs, guiding the team in creating innovative and proactive detection methodologies across varied cloud & on-prem platforms
• Partner strategically with Cyber Threat Intelligence to prioritize, shape, and operationalize intelligence into high-impact, sustainable detection coverage.
• Collaborate with Cyber Threat Hunting to transform successful hunts into automated, scalable detections and long-term detection hypotheses.
• Architect and oversee development of detection engineering automations, frameworks, and reusable tooling to accelerate team velocity and maturity.
• Identify, influence, and implement detection engineering tooling, infrastructure, and data visibility improvements across the enterprise.
• Provide authoritative insight on detection and visibility gaps, driving remediation efforts with platform owners, security architects, and engineering teams.
• Lead cross-functional initiatives to establish security requirements, uplift telemetry coverage, and strengthen detection and response capabilities.
• Coach, mentor, and elevate team members, fostering technical excellence, analytical rigor, and innovative thinking.
• Champion emerging technologies and best practices, embedding continuous improvement and modern engineering approaches into day-to-day operations.

Benefits

• Market competitive base salaries, with a yearly bonus potential at every level.
• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.
• 401(k) plan with company match (up to 4%).
• Company-funded pension plan.
• Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.
• Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
• Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.
• Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.
• Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance.