Detection Engineer

🕒 May 15

🇺🇸 United States – Remote

💵 $124k - $155k / year

⏰ Full Time

🟢 Junior

👷🏻‍♀️ Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Datavant

WebsiteLinkedInAll Job Openings

201 - 500 employees

Founded 2017

⚕️ Healthcare Insurance

☁️ SaaS

🏢 Enterprise

💰 $40M Series B on 2020-10

Healthcare Insurance • SaaS • Enterprise

Datavant is a company that provides a platform and network focused on making health data secure, accessible, and usable across the healthcare ecosystem. With a focus on data connectivity and interoperability, Datavant facilitates the movement of healthcare records across a vast network of organizations, including hospitals, clinics, health systems, and data partners. Their suite of products and solutions covers areas such as health data exchange, data transformation, and privacy compliance, serving various clients including health plans, healthcare providers, life sciences, and government organizations. Datavant's mission is to advance human health through improved data exchange and analytics.

📋 Description

• Design, develop, and maintain detection logic across endpoint, network, and cloud environments • Create and tune detections using tools such as CrowdStrike, Zscaler, SIEM platforms, and DLP solutions • Leverage Cyberhaven to build and enhance data exfiltration and insider risk detections • Analyze logs and telemetry to identify attack patterns, anomalies, and emerging threats • Continuously improve detection quality by reducing false positives and increasing signal fidelity • Partner with Incident Response and Security Operations to investigate alerts and refine detection strategies • Develop and document detection use cases, playbooks, and workflows • Stay current with adversary tactics, techniques, and procedures (TTPs) and translate them into actionable detections • Contribute to detection automation and engineering initiatives to improve scalability and efficiency

🎯 Requirements

• Strong experience with Data Loss Prevention (DLP) tools and workflows like CyberHaven and Microsoft Purview • Experience with CrowdStrike and Zscaler (or comparable EDR and network security platforms) • Deep understanding of Windows event logs and other investigation-relevant artifacts • Experience working with SIEM platforms, log management systems, and endpoint security tools • Strong analytical and critical thinking skills with exceptional attention to detail • Ability to investigate complex security events and translate findings into detection improvements • Excellent written and verbal communication skills, with the ability to clearly explain complex security concepts • Strong interpersonal skills and the ability to collaborate effectively across security, IT, and engineering teams • Self-driven with a continuous improvement mindset

🏖️ Benefits

• We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status. • Datavant is committed to a work environment free from job discrimination. • Datavant is committed to building a diverse team of Datavanters.