Detection Engineer
Overview:
POSITION OVERVIEWFidelity National Financial (FNF) is seeking a Detection Engineer to join our Information Security Office (ISO). The primary purpose of this position is to maintain and improve security detections within FNF. This role is specifically focused on email security. This role can sit 100% remote. DUTIES & RESPONSIBILITIESResearch adversary tradecraft, translate threat intelligence into detection logicTune and optimize existing detections to reduce alert fatigue while maintaining detection fidelityPerform regular detection coverage and gap analysis assessmentsDocument detection logic, response guidance, and follow-on analysis to support SOC and incident respondersRepresent detection engineering to cross-functional security teams in meetings, including priorities, capabilities, and progressCollaborate with other teams including threat intelligence, incident response, and security operations for detection authoring and improvements.Represent detection engineering to cross-functional security teams in meetings, including priorities, capabilities, and progressContribute to detection program standards and processesOther tasks and responsibilities as assignedMINIMUM REQUIREMENTS Bachelor's degree or the equivalent combination of education and work experience5+ years experience in cybersecurity/information securityStrong experience with Python, including logging, testing, object-oriented concepts, and designing ergonomic tools.Security monitoring experience with one or more SIEM technologies and query languages (SQL, XQL, SPL, KQL, etc.)Detection engineering experience including threat modeling, detection tuning, and metrics-driven-detectionsExperience in one or more security domains - defensive analyst, malware reversing, offensive security, open-source intelligence, threat intelligenceDetail oriented with strong organizational skillsExceptional written and oral communication skillsPREFERRED EXPERIENCE Experienced in detection validation, with a desire to prove coverageFamiliar with email analysis and securityExperience with detection-as-code, ideally in a continuous integration and continuous delivery (CI/CD) pipelineHands on experience with popular Breach-as-a-service tools for validation, coverage analysis, and threat modelingFamiliarity with Git-based workflows including branching, pull requests, and peer reviewCOMPENSATION & BENEFITSThis position has the potential to earn compensation in the range of $120,000 - $160,000 annually based on location and job-related factors such as skillset and experience. Actual rate may vary within the range provided, depending on a number of factors, including skillset, experience and location. The base compensation is one component of the total rewards package offered to our employees, including optional health and welfare insurance (medical/dental/vision/life/disability); paid holidays, vacation, and sick time off; and matching 401(k) plan and matching employee stock purchase plan.
Apply Now
POSITION OVERVIEWFidelity National Financial (FNF) is seeking a Detection Engineer to join our Information Security Office (ISO). The primary purpose of this position is to maintain and improve security detections within FNF. This role is specifically focused on email security. This role can sit 100% remote. DUTIES & RESPONSIBILITIESResearch adversary tradecraft, translate threat intelligence into detection logicTune and optimize existing detections to reduce alert fatigue while maintaining detection fidelityPerform regular detection coverage and gap analysis assessmentsDocument detection logic, response guidance, and follow-on analysis to support SOC and incident respondersRepresent detection engineering to cross-functional security teams in meetings, including priorities, capabilities, and progressCollaborate with other teams including threat intelligence, incident response, and security operations for detection authoring and improvements.Represent detection engineering to cross-functional security teams in meetings, including priorities, capabilities, and progressContribute to detection program standards and processesOther tasks and responsibilities as assignedMINIMUM REQUIREMENTS Bachelor's degree or the equivalent combination of education and work experience5+ years experience in cybersecurity/information securityStrong experience with Python, including logging, testing, object-oriented concepts, and designing ergonomic tools.Security monitoring experience with one or more SIEM technologies and query languages (SQL, XQL, SPL, KQL, etc.)Detection engineering experience including threat modeling, detection tuning, and metrics-driven-detectionsExperience in one or more security domains - defensive analyst, malware reversing, offensive security, open-source intelligence, threat intelligenceDetail oriented with strong organizational skillsExceptional written and oral communication skillsPREFERRED EXPERIENCE Experienced in detection validation, with a desire to prove coverageFamiliar with email analysis and securityExperience with detection-as-code, ideally in a continuous integration and continuous delivery (CI/CD) pipelineHands on experience with popular Breach-as-a-service tools for validation, coverage analysis, and threat modelingFamiliarity with Git-based workflows including branching, pull requests, and peer reviewCOMPENSATION & BENEFITSThis position has the potential to earn compensation in the range of $120,000 - $160,000 annually based on location and job-related factors such as skillset and experience. Actual rate may vary within the range provided, depending on a number of factors, including skillset, experience and location. The base compensation is one component of the total rewards package offered to our employees, including optional health and welfare insurance (medical/dental/vision/life/disability); paid holidays, vacation, and sick time off; and matching 401(k) plan and matching employee stock purchase plan.
Apply Now