Detection automation engineer

Post-Image

Detection automation engineer

Detection engineers at FalconForce are experienced professionals who deliver high-quality defensive security services around the world. In small teams you will work with our offensive specialists and our clients to help them become resilient against digital attacks and additionally do hands-on R&D to increase the quality of our services and contribute to the community. Your mission: detecting advanced threat actors in complex IT environments.

We are looking for a detection engineer who loves building new advanced features in modern threat detection environments. In particular automation, risk-based scoring, data enrichment and user feedback mechanisms.

Qualifications:

  • At least 3 years of hands-on experience with automation, enrichment and orchestration in threat detection environments.
  • Willingness and capability to research, architect and implement next-level threat detection features and publish/speak about it publicly.
  • Good understanding of infrastructure and architectural best practices / hardening baselines. Offensive security experience is a valuable nice-to-have.
  • Experience with Azure cloud, the Microsoft Defender suite, Microsoft Sentinel and Kusto query language.
  • Experience with working in Azure DevOps.
  • Hands-on experience with Azure Logic Apps, Function Apps, Power Automate and the Graph API.
  • Hands-on experience with Terraform and Ansible.
  • Hands-on coding experience with Python. Especially helpful if this is related to automation.

Please apply if you recognize yourself in the following. You:

  • Bring the best defensive technical security skills, while being able to think like a hacker.
  • Enjoy working cross-domain with other technical specialists. Both in-house and with our clients.
  • Have sharp analytical, innovation and pragmatic problem-solving skills.
  • Possess an inquisitive mindset – you really want to know how something works.
  • Are excited about doing hands-on R&D/tool development.
  • Love sharing knowledge with the community via publications or talks.
  • Have the highest ethical standards that are required for the sensitive work we do.
  • Can manage day-to-day responsibilities in a mix of remote and onsite teams.
  • Live in the Netherlands and hold an EU passport. We are open to discuss remote working from an EU country for EU passport holders.
  • Have a high level of proficiency in business English.
  • Dare to ask the hard questions ;-)

Want to hear more about what we do, where we want to go, and see if there’s a match? Please drop us an email at working@falconforce.nl with your CV (in PDF format) and meet us!

Apply now

Please note: acquisition based on this vacancy is not appreciated.