Rearc
At Rearc, we're committed to empowering engineers to build awesome products and experiences. Success as a business hinges on our people's ability to think freely, challenge the status quo, and speak up about alternative problem-solving approaches. If you're an engineer driven by the desire to solve problems and make a difference, you're in the right place! Our approach is simple - empower engineers with the best tools possible to make an impact within their industry. Role Overview Rearc is seeking a Cybersecurity Threat Detection Engineer with proactive communication skills, a foundation in DevSecOps and Detection-As-Code, deep purple team technical expertise, and an entrepreneurial spirit to join our growing Cybersecurity practice. This role involves partnering with customers to design innovative detection strategies and support modern cybersecurity monitoring programs. You will develop tailored security detections leveraging SIEM, SOAR, EDR, and NDR services to enhance cybersecurity efforts. What You Bring Enthusiasm for developing and evangelizing cybersecurity services. Strong fundamentals in cloud security, SIEM, and data engineering. What You'll Do Utilize and optimize NDR, EDR, real-time streaming, and SIEM technologies to develop threat detection capabilities. Build and refine detection rules using real-time data streams. Design enrichment pipelines and automation workflows to improve detection accuracy. Create correlation logic and automated processes for high-fidelity threat alerts. Maintain the availability, compliance, and recoverability of customer Data Analytics solutions, including SOPs, onboarding, normalization, and system maintenance. Develop and maintain incident response playbooks. Align detection content with customer-specific Use Case Frameworks and provide threat metrics. Collaborate with customer DART teams to enhance SOAR functionalities. Create dashboards for cybersecurity, IT, and OT teams. Stay informed about emerging threats and adapt detection strategies accordingly. Work closely with customer teams to ensure detections are actionable and relevant. Provide feedback to improve customer use case frameworks and security monitoring strategies. This role combines technical expertise with awareness of emerging threats to drive client success and stay at the forefront of cybersecurity innovations. Qualifications 6+ years of experience in cybersecurity, focusing on: Cybersecurity data lakes and warehousing SIEM engineering, architecture, and operations Data science, threat detection development Integrating IT, OT, and business applications into SIEM systems Bachelor's degree in MIS, CS, or related field A passion for cybersecurity and ongoing industry learning Experience in documenting and operationalizing cybersecurity technologies Programming skills in Python, Golang, or PowerShell Understanding of common attack techniques and practical applications Ability to work cross-functionally and communicate effectively A self-starter who thrives in fast-paced environments About Us Founded in 2016 by engineers involved in The Wall Street Journal's cloud transformation, Rearc empowers engineers to make impactful contributions. We foster a creative, bureaucracy-free environment where challenging the status quo is encouraged. We seek individuals eager to make a difference and grow with us. Join us to solve problems together! #J-18808-Ljbffr