Threat Detection Engineer

Job Title: Threat Detection Engineer

Location: Bellevue WA, GA, TX

Duration: / Term: 6+ months

Job Description:

Experience Desired: 8+ Years.

Al-Based Threat Hunting:

• Leverage Spilogig), threat hunt workbench and Al-driven tools to proactively detect hidden threats across SIEM, EDR, cloud, and endpoint data.
• Develop and execute MITRE ATTACK-aligned hypotheses, using multi-source telemetry and behavioral analytics
• Automate detection generation and tune logic to increase signal fidelity and reduce false positives.
• Root Cause Analysis (RCA)
• Conduct in-depth RCA of complex incident by corelating alert timelines, threat chains, and telemetry signals within
• Present BCA findings clearly to technical and non-technical stakeholders.
• Contribute to the development of detection improvement loops based on RCA feedback.
• Detection Engineering & Content Development
• Create and maintain custom detection logic, hunt queries, and response playbooks using Anvilogic I Assisted tools.
• Collaborate with internal security teams to develop threat narratives and detection packs aligned with business risk.
• Contribute to Anvilogic content lifecycle: tasting, publishing, and tuning of detection logic.
• Security Operations Support
• Monitor and triage Anvilogic, alerts and correlate with real-time telemetry for deeper analysis.
• Provide continuous feedback to improve threat detection coverage, response accuracy, and hunting workflows
• Mentor junior analysts on Anvilogic, tooling and RCA methodology

Key Skills:

Security operations, Threat hunting, Detection engineering, Splunk, Sentinel, Chronicle