Soc Detection & Rresponse - Sy Cybersecurity Eng - Future Project
Unisys
Bogota, Colombia
On-site
Develop custom detection rules
Threat intelligence translation
Level 3 security investigations
Design, develop, and maintain high-fidelity detection rules, signatures, and analytics for enterprise security tools to effectively identify known and emerging threats
Job Summary
Design, develop, and maintain high-fidelity detection rules, signatures, and analytics for enterprise security tools to effectively identify known and emerging threats.
Lead and conduct advanced security investigations (Level 3), perform root cause analysis, malware analysis, and proactively hunt for threats across network, endpoint, and cloud environments.
Develop and maintain automation scripts and tools to streamline security operations, facilitate data analysis, integrate disparate security tools, and enhance response capabilities.
Matching Summary
Design, develop, and maintain high-fidelity detection rules, signatures, and analytics for enterprise security tools to effectively identify known and emerging threats.
Skills & Requirements
Must-have
Develop custom detection rules
Threat intelligence translation
Level 3 security investigations
Proactive threat hunting
MSSP operations management
Security Orchestration Automation and Response (SOAR)
Python, PowerShell, Bash scripting
Nice-to-have
Minimize alert fatigue
Continuous improvement mindset
Stay updated on emerging threats
Key Requirements
Technical proficiency with SIEM (Splunk, Google SecOps)
Strong knowledge of EDR and IDS/IPS
Proficiency in scripting languages (Python, PowerShell, Bash)
Solid understanding of network security
Familiarity with threat intelligence platforms (MITRE ATT&CK)
Exceptional analytical and problem-solving skills
Strong verbal and written communication skills
English level B2 or higher
Technician/Technologist or Professional title in Systems Engineering or related field