Full-Time Senior Security Detection Engineer

Senior Security Detection Engineer | SPLUNK

Job Overview

The ServiceNow Security Organization (SSO) delivers world-class security solutions. This role focuses on building detections, workflows, and services to improve incident response.

Responsibilities

• Build threat detection use cases using threat intelligence and incident response data.
• Document products and deliver demos to operational teams.
• Collaborate with security platform engineering teams and product managers on requirements and roadmaps.
• Collaborate with detection engineers and incident responders on new detections.
• Design and build systems in public cloud ecosystems (AWS/Azure/GCP).
• Provide input on future products for a digital transformation cloud company.
• Work with data scientists on training ML models for detection.

Requirements

• 6+ years experience in Security Engineering or Security Operations
• 3+ years experience writing advanced Splunk queries (field extractions with regex)
• Understanding of attacks against JavaScript and Java applications
• 1+ year experience with public cloud IaaS (AWS/Azure/GCP)
• Experience with incident response/digital forensics
• Experience with security operations teams
• Strong interpersonal skills
• Familiarity with the ServiceNow platform (preferred)
• Open to exploring innovative ideas for automating tasks
• Bachelor's degree in technical science or equivalent experience

Additional Notes

• US Federal customer support required
• ServiceNow background screening, USFedPASS required (credit check, criminal/misdemeanor check, drug test)
• Only US citizens, naturalized citizens, or permanent residents considered

What is the last date for applying to the job?

Which countries are accepted for this remote job?