SCRAT Manager

Job Description :

• Collaborate with cross-functional teams, including Threat Intelligence, Incident Response, Digital Forensics, and Security Operations, to design and enhance detection use cases aligned with the MITRE ATT&CK framework.
• Develop advanced threat detection and response strategies by leveraging industry-leading security tools, technologies, and best practices to strengthen the organization's security posture.
• Analyze emerging cyber threats, attack patterns, tactics, and techniques (TTPs) to create effective detection logic that distinguishes malicious activity from legitimate behavior.
• Design, implement, and continuously optimize custom detection use cases to improve threat visibility, reduce false positives, and enhance detection accuracy.
• Stay up to date with the evolving cyber threat landscape, emerging attack vectors, and adversary techniques to proactively strengthen detection capabilities.
• Participate in red team exercises, penetration testing engagements, and attack simulations to validate and improve the effectiveness of detection use cases and defensive controls.
• Collaborate with stakeholders to investigate security incidents, identify detection gaps, and implement improvements based on lessons learned from real-world attacks.
• Develop and maintain comprehensive documentation for detection rules, use cases, threat models, and response procedures to support operational excellence and knowledge sharing.
• Monitor, measure, and report key security metrics and detection effectiveness to leadership, providing actionable insights for continuous improvement and informed decision-making.
• Drive continuous innovation by evaluating new security technologies, automation opportunities, and detection engineering methodologies to enhance the organization's cyber defense capabilities.

• Partner with Threat Intelligence, Incident Response, Digital Forensics, and Security Operations teams to develop and enhance detection use cases based on the MITRE ATT&CK framework.
• Design, implement, and optimize advanced threat detection and response solutions using modern security technologies and industry best practices.
• Perform in-depth analysis of cyber threats, attack techniques, and adversary tactics (TTPs) to develop high-fidelity detection rules.
• Build and continuously refine custom detection use cases to improve threat visibility, reduce false positives, and accelerate incident detection.
• Monitor emerging cyber threats, vulnerabilities, and attack vectors to proactively strengthen the organization's detection and response capabilities.
• Validate detection use cases through red team exercises, penetration testing, and attack simulations to ensure effectiveness against real-world threats.
• Work closely with cross-functional stakeholders to investigate security incidents, identify detection gaps, and implement continuous improvements.
• Create and maintain comprehensive documentation for detection logic, threat models, response procedures, and operational playbooks.
• Develop, track, and present security metrics and detection effectiveness reports to leadership, enabling data-driven decision-making and continuous optimization.
• Evaluate and adopt emerging security technologies, automation frameworks, and detection engineering practices to enhance the organization's overall cyber defense posture.