Detection And Response Engineer (au)

Droneshield LLC

Sydney, Australia
On-site
5-6 years security operations experience
Incident commander for complex incidents
Siem platform and log analysis skills
The role involves developing and tuning detection rules across SIEM tools to improve signal-to-noise ratio and reduce false positives

Job Summary

  • The role involves developing and tuning detection rules across SIEM tools to improve signal-to-noise ratio and reduce false positives.
  • Candidates will lead incident response efforts as an incident commander, handling investigations from detection through containment and recovery.
  • This position offers the opportunity to work with cutting-edge AI technology in a hypergrowing defense company protecting critical infrastructure.

Matching Summary

The role involves developing and tuning detection rules across SIEM tools to improve signal-to-noise ratio and reduce false positives.

Skills & Requirements

Must-have

  • 5-6 years security operations experience
  • Incident commander for complex incidents
  • SIEM platform and log analysis skills
  • Cloud or enterprise environment investigation
  • Python scripting or programming basics

Nice-to-have

  • Malware analysis and digital forensics
  • SOAR platforms and automation frameworks
  • Detection-as-code or infrastructure-as-code
  • AI/LLM application in security operations
  • Threat modeling and attacker methodologies

Key Requirements

  • 5-6 years of security operations experience
  • Hands-on incident response experience
  • Linux/macOS command line proficiency
  • Knowledge of AWS, Azure, or similar cloud platforms

Work Rights

Not specified

Tailored Resume

Cover Letter