Security Detection Engineer

qffr.xyz

Chennai, India
On-site
Detection rule development and maintenance
Proficiency in siem, soar, edr, and cloud security
Scripting and automation with python and powershell
Detection Engineering is responsible for designing, developing, and maintaining high-fidelity detection logic across enterprise security platforms to support the WPP SOC transformation into an Autonomic Security Operations model

Job Summary

  • Detection Engineering is responsible for designing, developing, and maintaining high-fidelity detection logic across enterprise security platforms to support the WPP SOC transformation into an Autonomic Security Operations model.
  • The role involves collaborating with SOC, Incident Response, and Threat Hunting teams to operationalize detection improvements and leveraging AI/ML for detection tuning and anomaly detection.
  • WPP offers a culture of creativity, collaboration, and continuous learning with a hybrid work approach and is committed to fostering an inclusive and respectful workplace.

Matching Summary

Detection Engineering is responsible for designing, developing, and maintaining high-fidelity detection logic across enterprise security platforms to support the WPP SOC transformation into an Autonomic Security Operations model.

Skills & Requirements

Must-have

  • Detection rule development and maintenance
  • Proficiency in SIEM, SOAR, EDR, and cloud security
  • Scripting and automation with Python and PowerShell
  • Detection-as-code and CI/CD pipeline automation
  • Root cause analysis of security incidents
  • Collaboration with SOC and threat hunting teams

Nice-to-have

  • Automation-first mindset
  • Strong analytical and problem-solving skills
  • Excellent communication and teamwork
  • Continuous learning and knowledge sharing
  • Experience with MITRE ATT&CK framework
  • Participation in purple team exercises

Key Requirements

  • Strong knowledge of SIEM, SOAR, EDR, and cloud security platforms
  • Proficiency in Python and PowerShell scripting
  • Familiarity with detection-as-code and CI/CD pipelines
  • Understanding of MITRE ATT&CK framework
  • Preferred certifications: GIAC GCTI, GCFA, or equivalent advanced security certifications

Work Rights

Not specified

Tailored Resume

Cover Letter