Detection Engineer
Cegeka
- București
- Permanent
- Full-time
- Developing and continuously refining detection rules within diverse SIEM solutions.
- Enhancing alert and incident handling capabilities in detection and response solutions, including EDR, xDR, NDR, and IDP.
- Contributing to the management of playbooks in our SOAR solution.
- Assisting in the management of Incident Response (IR) procedures.
- Conducting statistical analysis and reviewing trends in alerts and incidents.
- Ensuring the quality of incident handling by SOC/CSIRT Analysts.
- The Detection Engineer collaborates closely with SOC Analysts, CSIRT Analysts, Penetration Testers, and SOC Engineers. In addition to your strong expertise in security solutions and a solid foundation in system engineering for server and workstation operating systems, this role necessitates a profound comprehension of cyber threat intelligence, specifically Tactics, Techniques, and Procedures (TTPs) employed by threat actors.