Job Title: Cybersecurity Threat Detection Engineer
Experience: 6 + Years
Location: Hyderabad,
Notice Period: Immediate Joiner
Cab Facility: Available
Job Summary:
We are seeking a skilled Cybersecurity Threat Detection Engineer with 6+years of experience in cybersecurity, specializing in threat detection and incident response. This is a contract-to-hire opportunity for a candidate with strong expertise in SIEM platforms, detection content development, and cloud security. The role involves working closely with clients and internal teams to enhance detection capabilities across on-premises, cloud, and SaaS environments.
Key Responsibilities:
- Design and develop detection rules, policies, and alerting mechanisms to identify cybersecurity threats across varied technology stacks.
- Lead the creation and deployment of high-fidelity detection content across on-prem, cloud (AWS, Azure, GCP), and SaaS platforms.
- Collaborate with threat hunters, security analysts, and intelligence teams to incorporate emerging threats into detection strategies.
- Fine-tune detection mechanisms to reduce false positives and increase accuracy.
- Stay current with the latest cybersecurity trends, tools, and attack techniques.
- Assist clients in boarding the security platform and integrating diverse data sources.
- Document detection uses cases, processes, and generate security metrics reports.
- Provide technical guidance and collaborate with Security Operations on alert response automation and playbook development.
- Understand and work with network security tools and infrastructure such as firewalls, EDR, DLP, proxies, IDS/IPS, and email security solutions.
Required Qualifications:
- Bachelor's degree in computer science, Information Security, or related discipline.
- 5+ years of hands-on experience in cybersecurity, with emphasis on threat detection, incident response, and SIEM tools.
- Expertise in log analysis, SIEM tuning, and detection rule creation.
- Strong familiarity with MITRE ATT&CK, Cyber Kill Chain, and adversary TTPs.
- Knowledge of cloud-based threat detection techniques and strategies.
- Excellent written and verbal communication skills with the ability to collaborate effectively with clients and cross-functional teams.
Technical Skills & Tools:
- Hands-on experience with SIEM platforms: Splunk, Elastic Stack (ELK/Security Onion), IBM QRadar, Securonix, Wazuh, Azure Sentinel.
- Ability to create and manage SIEM queries, alerts, dashboards, and integrate new log sources.
- Familiarity with CSPM, SOAR, EDR/XDR, WAF, and other security toolsets.
- Scripting and automation knowledge for alert responses and playbooks.
Preferred Certifications:
- OSCP, CISSP, or GIAC certifications such as GCIH, GCIA, or similar.
