Securonix

At Securonix, we’re on a mission to secure the world by staying ahead of cyber threats, reinforcing all layers of our platform with AI capabilities. Our Securonix Unified Defense SIEM provides organizations with the first and only AI-Reinforced solution built with a cybersecurity mesh architecture on a highly scalable data cloud. Enhanced by Securonix EON’s AI capabilities, our innovative cloud-native solution delivers a seamless CyberOps experience, empowering organizations to scale their security operations and keep up with evolving threats.

Recognized as a five-time leader in the Gartner Magic Quadrant for SIEM and highly rated on Gartner Peer Insights, our award-winning Unified Defense SIEM provides organizations with 365 days of ‘hot’ data for rapid search and investigation, threat content-as-a-service, proactive defense through continuous peer and partner collaboration, and a fully integrated Threat Detection, Investigation, and Response (TDIR) experience—all within a single platform. Built on a cloud-native architecture, the platform leverages the Snowflake Data Cloud for unparalleled scalability and performance.

Securonix is proud to be a cybersecurity unicorn and featured in CRN's 2024 Security 100 list. Backed by Vista Equity Partners, one of the largest private equity firms with over $100 billion in assets under management, we have a unique advantage in driving innovation and growth. With a global footprint, we serve more than 1,000 customers worldwide, including 10% of the Fortune 100. Our network of 150+ partners and Managed Security Service Providers (MSSPs) enables us to deliver unmatched security solutions on a global scale.

At Securonix, we are driven by our core values and place our people at the heart of everything we do:

• Winning as One Team: We work together with universal respect to achieve aligned outcomes
• Customer Driven Innovation: We innovate to stay ahead of the market and create value for our customers
• Agility in Action: We embrace change and are unified in our purpose and objectives amidst change

Join us as we redefine cybersecurity, innovate fearlessly, and grow together as one team.

Job Summary :

We are seeking a senior staff engineer with 10–12 years of hands-on experience to technically lead and drive complex detection engineering initiatives across the organization. This role demands strong leadership, a deep technical foundation in detections, and a passion for delivering the best-in-class detections. The hire will be responsible for building and optimizing our detection content and working on the roadmap to build new content.

Primary Responsibilities :

• Technically Lead and drive Content engineering projects (Detection Engineering) across cloud and on-prem environments.
• Collaborate with product, analytics, and business teams to define and prioritize detection engineering initiatives.
• Evaluate and integrate technologies required to enhance and strengthen the process of building detections.
• Actively participate in incident management, root cause analysis, and performance tuning
• Identify, design, and implement internal process improvements: automating manual processes, optimizing detection, etc.
• Identify product/process limitations for content based initiatives and propose plausible solutions for the same.
• Identify and build prototypes for new detection abilities that can be introduced to reduce MTD of threats.
• Implement and use Breach and Attack Simulation Platform for better content delivery.
• Mentor and guide junior content engineers, driving best practices, code quality, and documentation.

Skill Set :

Must-Have Skills:

• 10–12 years of experience in Cybersecurity as a Detection Engineer or related roles, with a proven track record of driving initiatives end-to-end.
• Must have experience in technically leading the SOC.
• Understanding of the MITRE ATT&CK Framework.
• Knowledge of prominent attacker TTPs and building detections for the same.
• Solid understanding of cyber threats and attack vectors.
• Proficient with security technologies such as SIEM, EDR, IDS, IPS, network traffic analysis, endpoint security controls, and SOAR.
• Experience with one or more cloud platforms: AWS, GCP, or Azure.
• Strong fundamentals in network and operating systems concepts
• Experience working with offensive security testing tools.
• Strong communication skills, especially in writing technical documentation.

Preferred Skills:

• Past Experience in detection development with multiple SIEM vendor.
• Experience with Python automation development (Good to have)
• Prior Cloud detection content experience.

Benefits:

As a full-time employee with Securonix, you will be eligible for the following employee benefits:

• Health Insurance with a total sum insured is INR 7,50,000
• Coverage: Self, Spouse, 2 kids, Dependent parents, or parents-in-law
• Personal Accident with total sum insured is INR 10,00,000
• Term Life Insurance with a sum assured for employees is 5 times fixed base pay is covered.

Securonix, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, age, disability, genetic information, marital status, amnesty or status as a covered veteran in accordance with applicable federal, state and local laws. Securonix complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, and transfer, leaves of absence, compensation and training.

Securonix expressly prohibits any form of unlawful employee harassment based on race, color, religion, gender, sexual orientation, national origin, age, genetic information, disability or veteran status. Improper interference with the ability of Securonix employees to perform their expected job duties is absolutely not tolerated.