Threat Detection Lead 100% Remote

Toronto (ON) Remote Only
Opportunity Number: 2067124
Information TechnologyCyber Security
LanguageSecurity Clearance
English verbal and writtenCriminal Check at time of placement
Start PeriodDate Posted
One to two weeksFriday, January 21, 2022
Job Description

One of our clients are looking to hire a Threat Detection Lead in their team. You will be helping to build the intelligence in our detection and response infrastructure. This means that you have strong experience in Information Security. Join the team that provides the fundamental building blocks of our security platform, underlying the future of security across the healthcare industry.

Roles and Responsibilities

  • Lead the delivery of security incident detections using machine learning through application of information security expertise
  • Work across multiple platforms and languages at all levels of the stack
  • Mentor and guide junior team members in technical, security, and process knowledge
  • Contribute to automated testing, metrics collection, monitoring, and continuous improvement in all of your work
  • Identify the best approaches to power rapid detection, investigation, and response across our entire stack and continuously improve our capabilities by creating and iterating on new ideas
  • Help drive a culture of experimentation and continuous improvement across our entire engineering team
  • Design/Implement large-scale, distributed, production class software on public cloud platforms such as AWS or GCP
  • Own and drive features from conception to deployment in an agile team with continual delivery

Qualifications and Experience
  • Minimum 3 years (5 or more preferred) experience in the Information Security industry as an Analyst, Investigator, Response, Researcher, or authoring event sources, check logic, and/or detection signatures
  • Excellent teamwork, leadership and coaching skills. Security is a discipline where you have to keep up with the constant stream of new developments and breakthroughs in the industry.
  • Experience with SIEM technologies – ELK (ElasticSearch, Logstash, Kibana and Beats) preferred, but not required
  • Great skills with Elasticsearch (OpenSearch) are highly beneficial
  • Experience in a DevOps and Security (DevSecOps) focused environment
  • Hands on experience with building technologies in AWS and/or Google Cloud (using Terraform preferred, but not required)
  • Knowledge on container technologies (Docker, Kubernetes, GKE and AWS ECS/EKS)
  • Experience with scripting languages (python preferred) and using network automation tools
  • Software development experience, and familiarity with building products in an organization with a strong Secure Development Lifecycle and compliance requirements (HITRUST, SOC2, FedRAMP, HIPAA, HITECH, etc.)

We’re an equal opportunities employer committed to increasing diversity and inclusion in today’s workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Minorities, women, LGBTQ candidates, and individuals with disabilities are encouraged to apply. If you require an accommodation, please review our accessibility policy and reach out to our accessibility officer with any questions.
Merci de l’intérêt que vous manifestez pour ce poste. La description du poste nous a été fournie en anglais par notre client. Si vous souhaitez passer l’entrevue avec nous en français ou fournir votre CV en français, nous vous confierons à une personne de notre équipe qui parle français.

Opportunity Number: 2067124

Similar Jobs

Threat Detection Lead 100% Remote



 One to two weeks

Cyber Security Specialist