Detection Engineer (3 Openings) Job at DivIHN Integration Inc, Chicago, IL

WVdLUTRMZnU3U3AvdTJJZWhkWHcxY1UwUGc9PQ==
  • DivIHN Integration Inc
  • Chicago, IL

Job Description

DivIHN (pronounced “divine”) is a CMMI ML3-certified Technology and Talent solutions firm. Driven by a unique Purpose, Culture, and Value Delivery Model, we enable meaningful connections between talented professionals and forward-thinking organizations. Since our formation in 2002, organizations across commercial and public sectors have been trusting us to help build their teams with exceptional temporary and permanent talent.

Visit us at to learn more and view our open positions.

Please apply or call one of us to learn more

For further inquiries regarding the following opportunity, please contact one of our Talent Specialist

Saravanan |

630 847 0275

Naveen |

224 394 4904

Lavanya |

224 369 0873

Title: Detection Engineer (3 Openings)

Duration: 6 Months

Location: Chicago, IL - locals preferred, can be remote as well

Description

The candidate will join a team of 4 members already working on the same project

We are seeking a talented and motivated Detection Engineer to join team. As a part of the Detection Engineer, you will play a pivotal role in implementing, maintaining and advancing our threat detection mechanisms in to protect our critical business operations.

Job Summary:

As a Detection Engineer at Client, your primary focus will be on implementing, configuring, and maintaining security detection rules and mechanisms within our on-premise and Google Cloud environments.

Your expertise will contribute to our mission of safeguarding our assets and ensuring the highest level of security for our cloud infrastructure.

This role requires in-depth knowledge of detection engineering, incident response, investigations, and emerging threat trends.

Key Responsibilities:

  • MITRE ATTandCK Framework: Utilize the MITRE ATTandCK Framework for threat detection creation, gap assessment and analysis.
  • Security Detection Implementation: Implement, configure, and maintain security detection rules and mechanisms, including intrusion detection, anomaly detection, and log analysis tools, to identify and respond to security incidents.
  • Security Operations: Play a critical role in the day-to-day security operations, including monitoring, tuning, analysis, and proactive threat hunting.
  • Incident Response: Lead incident response efforts, investigate security incidents, conduct root cause analysis, and implement corrective measures.
  • Kubernetes Incident Response: Apply expertise in Kubernetes for incident response and forensic analysis.
  • Security Automation: Develop and maintain automation scripts and tools to streamline security detection operations and response.
  • SOAR Playbooks: Build, design, run, and troubleshoot playbooks within a SOAR (Security Orchestration, Automation, and Response) solution to automate incident response processes.
  • Documentation: Maintain comprehensive documentation of security detection configurations, incident response procedures, and investigations.
  • Stay Current: Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively enhance security detection measures.

Top Skills:
Extensive experience in Cybersecurity and Security Operations Center (SOC)
Proficiency in managing Detection Management programs
Strong focus on automation and technical tasks
Expertise in conducting attack and gap assessments, along with thorough documentation
Proven experience in detection lifecycle management and vulnerability management
Experience with cloud security detection tools and technologies, including intrusion detection, anomaly detection, and log analysis.
Proficiency in scripting and automation (e.g., Python, Bash).
Experience in incident response, investigations, and security operations.
Proficiency in Kubernetes with a focus on incident response and forensic analysis.
Familiarity with the MITRE ATTandCK Framework for threat detection and mitigation.
Experience working with Splunk Enterprise Security or similar SIEM solutions.
Excellent problem-solving and analytical skills.
Strong communication and teamwork skills.
Relevant certifications such as CISSP, GCIH, GCIA, Certified Kubernetes Administrator (CKA), or Splunk certifications are a plus.

Must Haves:
Proficiency in Python
Experience with Splunk
Knowledge of endpoint security
Familiarity with Jira
Experience with Kubernetes and Docker

Education

  • Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred).
  • Google Cloud Professional Cloud Security Engineer certification or equivalent experience.

Required Skills

  • Computer Security
  • Certified Information Systems Security Professional
  • Cyber Security
  • SIEM
  • Help Desk

Interview Process:
There will be 3 rounds of interviews:
Initial phone screening
Followed by 2 video interviews

About us:

DivIHN , the 'IT Asset Performance Services' organization, provides Professional Consulting, Custom Projects, and Professional Resource Augmentation services to clients in the Mid-West and beyond. The strategic characteristics of the organization are Standardization, Specialization, and Collaboration.

DivIHN is an equal opportunity employer. DivIHN does not and shall not discriminate against any employee or qualified applicant on the basis of race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status.

Job Tags

Permanent employment, Temporary work, Local area, Remote job,

Similar Jobs

FedEx Office

Retail Customer Service Associate Job at FedEx Office

 ...needs, suggest alternatives and provide solutions. This customer service focused team member is knowledgeable in all areas of the Store's...  ...pricing and product information, and recommending appropriate FedEx Office products and services. The Store Consultant will operate... 

Kimberlite Corporation

Dispatch Operator Job at Kimberlite Corporation

 ...Job Description Job Description KIMBERLITE CORPORATION dba Sonitrol Security Full Time PositionNOW Available! Graveyard Shift Dispatch Operator Responsibilities include monitoring of burglary, fire, and access control for customer facilities, troubleshooting... 

Julian & Grube Inc

Accountant/Consultant Job at Julian & Grube Inc

 ...Description JOB OVERVIEW Julian & Grube is seeking a highly motivated accountant to join our consulting team. J&G has dedicated itself solely...  ...governmental accounting training is provided, and no previous experience is necessary. DETAILSJOB TYPE: Full time; hybrid in office... 

Saxon Global

QA Tester Job at Saxon Global

Job Description:* 1-2 years of experience* Test mobile across multiple platforms including iOS, Android.* Experience with Functional and...  ...assurance analyst creates tests to find any problems with software before the product is launched. They identify and analyze any... 

FastSigns

Production Specialist/Sign Installer Job at FastSigns

 ...FASTSIGNS #178301 is hiring for a Production Specialist/Sign Installer to join our team! As the Production Specialist/Sign Installer, you'll play an important role in creating the finished sign or graphic and putting it in place so everyone can see it - in the ground...