Detection Engineer

Job not on LinkedIn

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Hunter Strategy

WebsiteLinkedInAll Job Openings

51 - 200 employees

🔒 Cybersecurity

Cybersecurity • Cloud Computing • Software Development

Hunter Strategy is a company focused on supporting mission partners in overcoming complex challenges in software engineering, cloud operations, and cyber risk. The company emphasizes the importance of IT as critical infrastructure and collaborates closely with technology and delivery partners to ensure long-term success. Hunter Strategy specializes in cloud engineering, DevSecOps, agile app development, and cybersecurity, providing services like software factory support, risk management, application security, and pen testing. The company is also experienced in compliance and authorization processes, helping clients navigate FedRamp and related requirements. As a HUBZone company, Hunter Strategy is committed to investing in its employees, communities, and partners, offering competitive salaries and wide-ranging benefits.

📋 Description

• Perform static and dynamic malware analysis using tools such as Detect It Easy, System Informer, and API Monitor to build attack chains and support emulation development. • Reverse engineer payloads and scripts to document execution behavior in detail. • Write emulations in languages such as C++, PowerShell, C#, and others to emulate malware behavior identified during analysis. • Develop detection logic based on emulations and malware analysis findings. • Identify telemetry gaps in Sysmon, auditd, EDR, and other data sources to improve detection coverage. • Produce high-quality technical reports with executive-level summaries of findings. • Debug malware and emulations using tools such as x64dbg, WinDbg, or other debuggers. • Analyze applications for vulnerabilities using reverse engineering and debugging tools. • Correlate events across incidents and malware behaviors identified during malware analysis. • Conduct hunt activities from a detection engineering perspective.

🎯 Requirements

• Strong understanding of Splunk Search Processing Language (SPL). • Proficiency in coding languages including C++, C#, Python, and Perl. • Proficiency in scripting languages including PowerShell, JavaScript, and VBScript. • Strong understanding of networking fundamentals. • Strong understanding of Windows and Linux internals.