Black & Veatch
Cyber Security Detection Engineer
Black & Veatch, Overland Park, Kansas, United States, 66213
Job Summary
Cyber Security Detection Engineer
– Black & Veatch, Full‑time, Staff Level, Hybrid/Remote.
Key Responsibilities
Design and implement detection functions using telemetry from endpoint logs, cloud logs, email scanning, sandbox analysis.
Create and optimize YARA rules, Sigma rules, SIEM hunts to identify malicious activity.
Expand telemetry and signal coverage while reducing noise to improve detection fidelity.
Threat Intelligence
Assimilate and operationalize open‑source threat intelligence feeds.
Generate internal cyber threat intelligence reports and indicators of compromise (IOCs).
Integrate threat intelligence into detection platforms to enhance visibility and response.
Threat Hunting
Design and execute proactive threat hunting routines across enterprise environments.
Identify anomalous behaviors and potential threats not detected by automated systems.
Alert Analysis & Incident Response
Analyze security alerts and determine impact and severity.
Lead incident response – containment, eradication, recovery.
Collaborate with SOC analysts and stakeholders for timely resolution.
Remediation & Reporting
Develop and implement remediation plans for identified threats and vulnerabilities.
Document findings and lessons learned to improve detection and response capabilities.
Contribute to continuous improvement of security operations and detection engineering processes.
Preferred Qualifications
5+ years in cybersecurity: detection engineering, threat hunting, incident response.
Proficiency in scripting (Python, PowerShell).
Experience with SIEM, EDR, threat intelligence platforms.
Familiarity with detection‑as‑code frameworks and telemetry analysis.
Minimum Qualifications
Bachelor’s degree in Information Security, Computer Science, or related field.
10+ years overall experience in Cyber Security, IT, Risk Assessments, Privacy (5 years in Governance, Risk & Compliance; 5 years in Privacy).
At least one certification: CISSP, CISM, CISA, CRISC, CIPP, or similar privacy certifications.
Experience applying security and risk frameworks (NIST, 800‑53, 800‑171, NERC CIP, CIS, CMMC, SOC2, GDPR, etc.).
Completed pre‑employment onboarding requirements: background check, drug screen, motor vehicle records search.
Certifications Must hold at least one certification: CISSP, CISM, CISA, CRISC, CIPP, or similar privacy certifications.
Work Environment/Physical Demands Hybrid or flexible work options may be offered after the first 90 days of employment based on manager discretion, job performance, and work assignments.
Salary Plan ITS: Information Technology Service. Job Grade 017.
Equal Employment Opportunity (EEO) Statement Black & Veatch is an equal opportunity employer. We do not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender identity, disability, veteran status, or pregnancy status. For our EEO Policy Statement, please click here.
#J-18808-Ljbffr
– Black & Veatch, Full‑time, Staff Level, Hybrid/Remote.
Key Responsibilities
Design and implement detection functions using telemetry from endpoint logs, cloud logs, email scanning, sandbox analysis.
Create and optimize YARA rules, Sigma rules, SIEM hunts to identify malicious activity.
Expand telemetry and signal coverage while reducing noise to improve detection fidelity.
Threat Intelligence
Assimilate and operationalize open‑source threat intelligence feeds.
Generate internal cyber threat intelligence reports and indicators of compromise (IOCs).
Integrate threat intelligence into detection platforms to enhance visibility and response.
Threat Hunting
Design and execute proactive threat hunting routines across enterprise environments.
Identify anomalous behaviors and potential threats not detected by automated systems.
Alert Analysis & Incident Response
Analyze security alerts and determine impact and severity.
Lead incident response – containment, eradication, recovery.
Collaborate with SOC analysts and stakeholders for timely resolution.
Remediation & Reporting
Develop and implement remediation plans for identified threats and vulnerabilities.
Document findings and lessons learned to improve detection and response capabilities.
Contribute to continuous improvement of security operations and detection engineering processes.
Preferred Qualifications
5+ years in cybersecurity: detection engineering, threat hunting, incident response.
Proficiency in scripting (Python, PowerShell).
Experience with SIEM, EDR, threat intelligence platforms.
Familiarity with detection‑as‑code frameworks and telemetry analysis.
Minimum Qualifications
Bachelor’s degree in Information Security, Computer Science, or related field.
10+ years overall experience in Cyber Security, IT, Risk Assessments, Privacy (5 years in Governance, Risk & Compliance; 5 years in Privacy).
At least one certification: CISSP, CISM, CISA, CRISC, CIPP, or similar privacy certifications.
Experience applying security and risk frameworks (NIST, 800‑53, 800‑171, NERC CIP, CIS, CMMC, SOC2, GDPR, etc.).
Completed pre‑employment onboarding requirements: background check, drug screen, motor vehicle records search.
Certifications Must hold at least one certification: CISSP, CISM, CISA, CRISC, CIPP, or similar privacy certifications.
Work Environment/Physical Demands Hybrid or flexible work options may be offered after the first 90 days of employment based on manager discretion, job performance, and work assignments.
Salary Plan ITS: Information Technology Service. Job Grade 017.
Equal Employment Opportunity (EEO) Statement Black & Veatch is an equal opportunity employer. We do not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender identity, disability, veteran status, or pregnancy status. For our EEO Policy Statement, please click here.
#J-18808-Ljbffr