Detection Engineer

🕒 Março 4

⚔️ Virginia – Remoto

⚔️ Virginia – Remote

💵 $91.300 - $221.100 / ano

⏰ Tempo Integral

🟡 Pleno

🟠 Sênior

👷🏻‍♀️ Engenheiro

Candidatar-se

Encontrar Vagas Remotas Similares

Receber Emails de Vagas Remotas

📊 Verifique sua pontuação de currículo para esta vaga

Melhore suas chances de conseguir uma entrevista verificando sua pontuação de currículo antes de se candidatar.

Enviar Currículo

Accenture Federal Services

SiteLinkedInTodas as Vagas

10.000+ funcionários

Fundada em 2017

🤖 Inteligência Artificial

🔒 Cibersegurança

🏛️ Governo

Artificial Intelligence • Cybersecurity • Government

Accenture Federal Services é uma divisão da Accenture que foca em fornecer serviços de tecnologia e consultoria para o governo federal dos Estados Unidos. Com capacidades em nuvem, cibersegurança, dados e inteligência artificial, engenharia digital e tecnologias emergentes, a Accenture Federal Services apoia agências federais na obtenção de resultados críticos por meio da inovação e avanço tecnológico. A empresa enfatiza a construção de soluções seguras e escaláveis, aprimorando a tomada de decisões com insights baseados em dados e transformando infraestruturas digitais para atender demandas governamentais complexas. Ao aproveitar P&D avançado e design centrado no ser humano, ela visa melhorar o desempenho e a resiliência das operações governamentais.

Descrição

• Design, engineer, and implement security detection initiatives under the cybersecurity team lead. • Develop new detection logic for SIEM (Microsoft Sentinel) and network security platforms (Cisco FirePower, IDS/IPS), incorporating AI-driven tooling where applicable. • Write and optimize KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version control of detection logic using Git and GitHub workflows for collaborative development and auditability. • Bridge the gap between network engineering and cybersecurity teams to advocate for secure network designs and maximize security device capabilities. • Conduct technical briefings to enhance team awareness of network architecture and detection strategies. • Collaborate with operations and management to recommend improvements to security posture and ensure compliance with industry and federal standards (e.g., NIST, CISA).

🎯 Requisitos

• U.S. Citizenship required • Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience) • 6 + years experience in information security or equivalent combination of education and work experience • 2+ years experience performing event and log analysis across enterprise security tools (AV, IDS/IPS, Firewalls, Active Directory, Web Proxies, DLP, SIEM) • Hands-on experience with: • Microsoft Sentinel & KQL (minimum 1 year) • Cisco FirePower and IDS/IPS configuration (minimum 1 year) • SIEM platforms (Sentinel preferred) • Detection engineering: designing and tuning signatures for IoCs and IoAs • Packet and malware analysis using tools like Wireshark • Git and GitHub for detection code version control and collaborative workflows • Scripting and parsing (regex, PowerShell, Python, grep, sed, awk) • TCP/IP, application layer protocols, and Windows/Linux internals • MITRE ATT&CK framework for detection mapping

🏖️ Benefícios

• Reasonable ranges of compensation for hired roles based on labor costs • Wide variety of benefits