Detection Engineer (3 Openings) Job at DivIHN Integration Inc, Chicago, IL

WVdLUTRMZnU3U3AvdTJJZWhkWHcxY1UwUGc9PQ==
  • DivIHN Integration Inc
  • Chicago, IL

Job Description

DivIHN (pronounced “divine”) is a CMMI ML3-certified Technology and Talent solutions firm. Driven by a unique Purpose, Culture, and Value Delivery Model, we enable meaningful connections between talented professionals and forward-thinking organizations. Since our formation in 2002, organizations across commercial and public sectors have been trusting us to help build their teams with exceptional temporary and permanent talent.

Visit us at to learn more and view our open positions.

Please apply or call one of us to learn more

For further inquiries regarding the following opportunity, please contact one of our Talent Specialist

Saravanan |

630 847 0275

Naveen |

224 394 4904

Lavanya |

224 369 0873

Title: Detection Engineer (3 Openings)

Duration: 6 Months

Location: Chicago, IL - locals preferred, can be remote as well

Description

The candidate will join a team of 4 members already working on the same project

We are seeking a talented and motivated Detection Engineer to join team. As a part of the Detection Engineer, you will play a pivotal role in implementing, maintaining and advancing our threat detection mechanisms in to protect our critical business operations.

Job Summary:

As a Detection Engineer at Client, your primary focus will be on implementing, configuring, and maintaining security detection rules and mechanisms within our on-premise and Google Cloud environments.

Your expertise will contribute to our mission of safeguarding our assets and ensuring the highest level of security for our cloud infrastructure.

This role requires in-depth knowledge of detection engineering, incident response, investigations, and emerging threat trends.

Key Responsibilities:

  • MITRE ATTandCK Framework: Utilize the MITRE ATTandCK Framework for threat detection creation, gap assessment and analysis.
  • Security Detection Implementation: Implement, configure, and maintain security detection rules and mechanisms, including intrusion detection, anomaly detection, and log analysis tools, to identify and respond to security incidents.
  • Security Operations: Play a critical role in the day-to-day security operations, including monitoring, tuning, analysis, and proactive threat hunting.
  • Incident Response: Lead incident response efforts, investigate security incidents, conduct root cause analysis, and implement corrective measures.
  • Kubernetes Incident Response: Apply expertise in Kubernetes for incident response and forensic analysis.
  • Security Automation: Develop and maintain automation scripts and tools to streamline security detection operations and response.
  • SOAR Playbooks: Build, design, run, and troubleshoot playbooks within a SOAR (Security Orchestration, Automation, and Response) solution to automate incident response processes.
  • Documentation: Maintain comprehensive documentation of security detection configurations, incident response procedures, and investigations.
  • Stay Current: Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively enhance security detection measures.

Top Skills:
Extensive experience in Cybersecurity and Security Operations Center (SOC)
Proficiency in managing Detection Management programs
Strong focus on automation and technical tasks
Expertise in conducting attack and gap assessments, along with thorough documentation
Proven experience in detection lifecycle management and vulnerability management
Experience with cloud security detection tools and technologies, including intrusion detection, anomaly detection, and log analysis.
Proficiency in scripting and automation (e.g., Python, Bash).
Experience in incident response, investigations, and security operations.
Proficiency in Kubernetes with a focus on incident response and forensic analysis.
Familiarity with the MITRE ATTandCK Framework for threat detection and mitigation.
Experience working with Splunk Enterprise Security or similar SIEM solutions.
Excellent problem-solving and analytical skills.
Strong communication and teamwork skills.
Relevant certifications such as CISSP, GCIH, GCIA, Certified Kubernetes Administrator (CKA), or Splunk certifications are a plus.

Must Haves:
Proficiency in Python
Experience with Splunk
Knowledge of endpoint security
Familiarity with Jira
Experience with Kubernetes and Docker

Education

  • Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred).
  • Google Cloud Professional Cloud Security Engineer certification or equivalent experience.

Required Skills

  • Computer Security
  • Certified Information Systems Security Professional
  • Cyber Security
  • SIEM
  • Help Desk

Interview Process:
There will be 3 rounds of interviews:
Initial phone screening
Followed by 2 video interviews

About us:

DivIHN , the 'IT Asset Performance Services' organization, provides Professional Consulting, Custom Projects, and Professional Resource Augmentation services to clients in the Mid-West and beyond. The strategic characteristics of the organization are Standardization, Specialization, and Collaboration.

DivIHN is an equal opportunity employer. DivIHN does not and shall not discriminate against any employee or qualified applicant on the basis of race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status.

Job Tags

Permanent employment, Temporary work, Local area, Remote job,

Similar Jobs

Pooch Hotel

Pet Pro (Dog Daycare/Kennel) Job at Pooch Hotel

 ...401K with Company Contribution Who we are: Pooch Hotel is a full service, resort experience for Newton's dogs and their parents. We offer daycare, boarding, grooming, and retail. Our pack takes pride in our work by conducting and holding ourselves to an extremely... 

NewYork-Presbyterian

MRI Technologist Certified- Part Time (Weekends) 4pm-12am- Allen Hospital Job at NewYork-Presbyterian

 ...Technologists Make It Possible Certified MRI Technologist -Part Time - Weekend Days Enter the collaborative, patient-focused...  ...opportunity employer. Salary Range: $48.47-$58.16/Hourly It all begins with you. Our amazing compensation packages start... 

Symbria

Independent Contractor - Lees Summit, MO Job at Symbria

 ...have unique opportunities available for you to truly be your own boss as an Independent Contract Delivery Driver. These independent contractor opportunities will be supporting our Pharmacy division in Lees Summit, MO with the delivery of client prescriptions to the... 

Compass Group Careers

CAMPUS MARKETING MANAGER - Keene State College - Keene, NH Job at Compass Group Careers

 ...Job Description Job Description At over 300 college & universities around the country, Chartwells Higher Education is re-inventing the on-campus dining experience. We are challenging the norm and setting new standards by investing in high-tech, food-infused social... 

Uncommon Schools

Middle School Teacher - up to $86,000 Job at Uncommon Schools

 ...performing, public charter schools providing an outstanding K-12 education in historically under-resourced communities. We have proudly...  ...college or university and have earned a cumulative GPA of 2.5 or higher by the time employment begins. You do not need to be certified...