Ready to further your career in the fast-paced, exciting world of cyber security?
A Managed Detection & Response (MDR) Developer - Security is both a cybersecurity researcher and a detections developer. They work daily to identify areas to improve our threat detection capabilities whether through new, tuned or customized coverage. Their overarching goal is to help us make security better for our clients every day. This role works with team members, Product Management, Security Services and various other specialists to continuously improve the coverage and efficacy of our MDR solution.
Responsibilities Include:
·Research and develop expertise in the various threat surfaces and telemetry available for them
·Propose coverage and efficacy improvements to the detection surface
·Work with team members to develop novel detections and continuously tune existing ones
·Implement customizations of detections to provide the greatest coverage for each customer
·Participate in the full software development life cycle
·Build well-designed, testable, efficient and secure code
·Build runbooks, reports and supporting material for detection surface
·Document research findings and knowledge share with team and other departments
We value a culture of sharing, so every team has the opportunity to share their work with the entire department during our monthly R&D Demos. Once a year we hold a department-wide Hackathon, teaming up across all R&D teams over four days to collaborate and build cool ideas outside the normal project scope. While innovation is the focus, some of these ideas do make it into our products.
About You
You have development experience with Python, Go, Java or C/C++. The development for this role is largely python based.
We use and train on a variety of technologies in MDR. Candidates who have exposure to the technologies below or who are interested in security detections/protections are encouraged to apply for this position.
·SIEM detections
·NDR/IPS/IDS detections/signatures
·EDR detections/signatures
·Sigma and Yara rules
·Cloud security detections
·NGFW (PAN, CISCO, Fortinet, etc.)
·Open Source IPS/IDS/NSM (e.g. Bro/Zeek/Suricata)
·SIEMs and Security Analytics platforms (e.g. Elastic, Open Source Big Data Stacks, Splunk)
Come join the Pack during this exciting time of rapid growth where every employee makes a difference and their contributions are recognized and rewarded.