Detection Engineer

We are looking for Detection Engineer with AI exposure.Client: Cybersecurity FirmCompany Head office: Dubai, UAEEmployment Type: Full-TimeRole PurposeOwn the technical onboarding and telemetry readiness that powers the MDR service. Ensure every client environment delivers clean, complete, and actionable data into the MDR platform from day one.Detection Engineering (Core Focus)Design and develop custom detection rules from scratch using endpoint, network, and cloud telemetryTranslate MITRE ATT&CK techniques into actionable detection logicBuild detections based on:Process execution patternsCommand-line analysisParent-child relationshipsDLL loads and memory behaviorsNetwork anomaliesThreat Behavior ModelingAnalyze attacker tactics, techniques, and procedures (TTPs)Convert threat intelligence into practical detection use casesContinuously refine detections to reduce false positivesDetection ImplementationImplement detection logic across platforms such as:Microsoft Defender for EndpointCrowdStrike FalconSentinelOneSIEM tools (e.g., Microsoft Sentinel, Splunk)Work with:KQL (Kusto Query Language)Sigma rulesEDR custom detection frameworksThreat Hunting & ValidationProactively hunt for threats using hypothesis-driven approachesValidate detection rules through:Simulated attack scenariosRed team / purple team exercisesContinuous ImprovementTune detection rules for:AccuracyPerformanceScalabilityEliminate alert fatigue by improving signal-to-noise ratio

Apply Now