Detection engineer
1 settimana fa
Detection EngineerAbout the RoleWe are looking for a Senior Detection Engineer to join our international cybersecurity team. The person who joins will help build upon the current ATT& CK-based detection manual used by the Getronics Security Operations Center (SOC), and take it to the next level of maturity and capability. Additionally, they will support the day-to-day threat detection work of a team of analysts servicing a wide range of clients across various industries, including Getronics' private/hybrid cloud and internal IT services.Key Responsibilities· Develop threat detection rules to identify modern attacker tactics and techniques, working closely with threat intelligence, incident response, security analysts, and infrastructure/security architecture teams.· Maintain and optimize the existing detection rulebase, applying lifecycle management and deprecating rules where needed.· Assess ATT& CK coverage to identify detection gaps and improvement opportunities.· Define and maintain effective detection metrics.· Support compliance-related use cases as required.· Create and maintain lists to support correlation rules.· Design dashboards for specific threat detection use cases and train analysts on their use.· Provide input into threat hunting activities through the development of efficient search queries.· Collaborate with business and IT teams to create detection strategies aligned with current and emerging business needs.· Analyze alert trends and propose improvements.· Support data collection improvements and maintain configuration management documentation.Requirements· Minimum of 2 years' experience as a Cybersecurity Detection Analyst working with SIEM technologies (QRadar, Log Rhythm, Splunk, Elastic Security, Insight IDR, Alien Vault OSSIM, etc.).· Previous experience in other technical cybersecurity roles such as SOC Analyst, Threat Intelligence Analyst, or Pentester.· Hands-on experience implementing detection playbooks based on the MITRE ATT& CK framework.· Strong analytical and problem-solving skills.· Solid understanding of the current threat landscape, including common attack vectors and best practices for protecting systems and networks.· Advanced knowledge or experience with at least two of the following technologies: Python, Reg Ex, Sigma, YARA.· Experience fine-tuning correlation rules for optimal performance.· Strong communication skills with the ability to document clearly and summarize effectively.· Fluent English is mandatory due to international team collaboration.· Structured, goal-oriented working style.
-
Senior Computer Vision Engineer
3 settimane fa
Italia NTT DATA Corporation A tempo pienoSenior Computer Vision Engineer NTT DATA, Trusted Global Innovator, è tra i principali player a livello mondiale in ambito IT services. Con più di 150.000 professionisti in oltre 50 Paesi in tutto il mondo, siamo protagonisti e acceleratori della trasformazione digitale offrendo ai nostri clienti soluzioni tecnologiche e innovative progettate su misura. Il...
-
Computer Vision Engineer — 3D
2 settimane fa
Italia Experteer Italy A tempo pienoAn innovative technology company is seeking a Computer Vision Engineer in Italy to develop and optimize algorithms for detection, tracking, and 3D data processing. The role offers flexible hybrid working and the chance to contribute to impactful AI applications within a talented team. Ideal candidates hold an MSc or PhD in Computer Science or a related field...
-
Endpoint Security Engineer
2 settimane fa
Italia RED Global A tempo pienoRuolo : Endpoint Security Engineer Luogo: 100% Remote Durata : 2 anni + Possibilita Seniority: >4 anni P.iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Endpoint Security Engineer
2 settimane fa
Italia RED Global A tempo pienoRuolo : Endpoint Security Engineer Luogo: 100% Remote Durata : 2 anni + Possibilita Seniority: >4 anni P.iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Endpoint Security Engineer
2 settimane fa
Italia RED Global A tempo pienoRuolo : Endpoint Security Engineer Luogo: 100% Remote Durata : 2 anni + Possibilita Seniority: > 4 anni P.Iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Security Engineer
2 settimane fa
Italia Meridionale RED Global A tempo pienoRuolo : Endpoint Security Engineer Luogo: 100% Remote iva / B2B Contract / Freelance Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà responsabile della gestione e della protezione di...
-
CSPM Engineer
2 settimane fa
Italia ADENTIS Italia A tempo pienoCHI SIAMO Adentis Italia è un gruppo europeo di consulenza ingegneristica e IT operativa facente parte del Gruppo MoOngy. Presente in 14 Paesi europei con oltre 8500 dipendenti, abbiamo aperto la prima sede italiana a Milano e, grazie alla nostra continua crescita, stiamo rafforzando e ampliando il nostro team con persone che condividano i valori della...
-
Endpoint Security Engineer
2 settimane fa
Italia Meridionale RED Global A tempo pienoRuolo: Endpoint Security Engineer Luogo: 100% Remote Durata: 2 anni + Possibilita Seniority: >4 anni P.iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Endpoint Security Engineer
2 settimane fa
Italia Meridionale RED Global A tempo pienoRuolo: Endpoint Security Engineer Luogo: 100% Remote Durata: 2 anni + Possibilita Seniority: >4 anni P.iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Endpoint security engineer
2 settimane fa
Italia Meridionale RED Global A tempo pienoRuolo: Endpoint Security Engineer Luogo: 100% Remote Durata: 2 anni + Possibilita Seniority: >4 anni P.iva / B2 B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
