Clash
of Jobs
Browse All Jobs
Job Description
Elastic is seeking a Senior Threat Detection Engineer to enhance the security of its products and services. This role involves developing and tuning detections across various sources, including cloud providers, CI/CD environments, SaaS services, and user workstations. The engineer will collaborate with internal teams to understand Elastic’s threat landscape and support incident response activities through log analysis. They will also have the opportunity to provide feedback on the Elastic Stack to improve it for all users.
Role involves:
- Building detections to identify malicious activity using the Elastic Security solution.
- Documenting detections and initial response actions as code.
- Reviewing and tuning existing detections.
- Identifying additional log sources to close visibility gaps.
- Partnering with the product team on new features and bug fixes.
- Providing feedback and testing pre-release versions of the Elastic Stack.
Requirements:
- At least 3 years of experience in monitoring and detection in a complex, global environment.
- Demonstrated ability to think innovatively about solving critical security problems.
- Curiosity for research and uncovering cyber behavior.
- Experience analyzing threat profiles and indicators.
- Eligibility to work in DoD Impact Level 4 or above cloud service environments.
Elastic offers:
- Competitive pay.
- Health coverage for you and your family in many locations.
- Flexible locations and schedules for many roles.
- Generous number of vacation days each year.
- Company-matched 401k with dollar-for-dollar matching up to 6% of eligible earnings.
- Stock program.
.png?1726786238){kind=logo}