Blue Team Engineer - Remote

Overview

As a Blue Team Engineer at Picus Security, you will play a crucial role in enhancing cybersecurity defenses by analyzing adversarial techniques and developing threat detection methodologies.

In Short

• Analyze and leverage public research on emerging cyber threats.
• Research and implement Continuous Threat Exposure Management methodologies.
• Deploy and manage endpoint security technologies like XDR, EDR, and SIEM.
• Develop threat detection scenarios using both open-source and vendor-based solutions.
• Utilize AI and data analysis for innovative cybersecurity solutions.
• Optimize detection rules to enhance threat detection accuracy.
• Conduct research on new threat hunting methodologies and tools.
• Collaborate with Picus Labs Red Team for purple teaming exercises.
• Partner with engineering teams to refine product features.
• Contribute to the development of tools supporting the Detection Development Life Cycle.

Requirements

• Hands-on experience in hunting adversarial techniques.
• Experience with security monitoring and incident detection.
• Proficiency in scripting languages like Python and Bash.
• Strong knowledge of threat detection and hunting.
• Knowledge of SIGMA and YARA rule development.
• Experience with SIEM and EDR technologies.
• Familiarity with the Mitre ATT&CK framework.
• Proactive mindset with a continuous learning attitude.
• Excellent communication skills.
• Proficiency in written English.

Benefits

• Opportunity to work in a fast-growing cyber security startup.
• Chance to contribute to innovative technologies in cyber security.
• Dynamic work environment with constant challenges.
• Opportunity for professional growth and skill development.
• Collaborative team atmosphere focused on innovation.