DivIHN (pronounced “divine”) is a CMMI ML3-certified Technology and Talent solutions firm. Driven by a unique Purpose, Culture, and Value Delivery Model, we enable meaningful connections between talented professionals and forward-thinking organizations. Since our formation in 2002, organizations across commercial and public sectors have been trusting us to help build their teams with exceptional temporary and permanent talent.
Visit us at https://divihn.com/find-a-job/ to learn more and view our open positions.
Please apply or call one of us to learn more
For further inquiries regarding the following opportunity, please contact one of our Talent Specialist
Saravanan | 630 847 0275
Naveen | 224 394 4904
Lavanya | 224 369 0873
Title: Detection Engineer (3 Openings)
Duration: 6 Months
Description
We are seeking a talented and motivated Detection Engineer to join team. As a part of the Detection Engineer, you will play a pivotal role in implementing, maintaining and advancing our threat detection mechanisms in to protect our critical business
operations.
Job Summary
As a Detection Engineer at Client, your primary focus will be on implementing, configuring, and maintaining security detection rules and mechanisms within our on-premise and Google Cloud environments.
Your expertise will contribute to our mission of safeguarding our assets and ensuring the highest level of security for our cloud infrastructure.
This role requires in-depth knowledge of detection engineering, incident response, investigations, and emerging threat trends.
Key Responsibilities
- MITRE ATT&CK Framework: Utilize the MITRE ATT&CK Framework for threat detection creation, gap assessment and analysis.
- Security Detection Implementation: Implement, configure, and maintain security detection rules and mechanisms, including intrusion detection, anomaly detection, and log analysis tools, to identify and respond to security incidents.
- Security Operations: Play a critical role in the day-to-day security operations, including monitoring, tuning, analysis, and proactive threat hunting.
- Incident Response: Lead incident response efforts, investigate security incidents, conduct root cause analysis, and implement corrective measures.
- Kubernetes Incident Response: Apply expertise in Kubernetes for incident response and forensic analysis.
- Security Automation: Develop and maintain automation scripts and tools to streamline security detection operations and response.
- SOAR Playbooks: Build, design, run, and troubleshoot playbooks within a SOAR (Security Orchestration, Automation, and Response) solution to automate incident response processes.
- Documentation: Maintain comprehensive documentation of security detection configurations, incident response procedures, and investigations.
- Stay Current: Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively enhance security detection measures.
Skills
- Experience with cloud security detection tools and technologies, including intrusion detection, anomaly detection, and log analysis.
- Proficiency in scripting and automation (e.g., Python, Bash).
- Experience in incident response, investigations, and security operations.
- Proficiency in Kubernetes with a focus on incident response and forensic analysis.
- Familiarity with the MITRE ATT&CK Framework for threat detection and mitigation.
- Experience working with Splunk Enterprise Security or similar SIEM solutions.
- Excellent problem-solving and analytical skills.
- Strong communication and teamwork skills.
- Relevant certifications such as CISSP, GCIH, GCIA, Certified Kubernetes Administrator (CKA), or Splunk certifications are a plus.
Education
- Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred).
- Google Cloud Professional Cloud Security Engineer certification or equivalent experience.
Required Skills
- Computer Security
- Certified Information Systems Security Professional
- Cyber Security
- SIEM
- Help Desk
About Us
DivIHN, the 'IT Asset Performance Services' organization, provides Professional Consulting, Custom Projects, and Professional Resource Augmentation services to clients in the Mid-West and beyond. The strategic characteristics of the organization are Standardization, Specialization, and Collaboration.
DivIHN is an equal opportunity employer. DivIHN does not and shall not discriminate against any employee or qualified applicant on the basis of race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status.
