Threat Detection Researcher, deepwatch

• Experience with Google SecOps / Yara-L
• Cybersecurity experience in a technical role or experience working in a SOC/MDR/MSSP
• Ability to engineer creative, scalable, and out-of-the-box solutions
• Stay up to date with cybersecurity best practices, security technology trends, tools, and frameworks
• Experience working with and creating detections for SIEM tools and/or EDR platforms
• Understanding of common enterprise technologies and logging capabilities including Cloud, IDS/IPS, Firewalls, Active Directory, Anti-Virus/EDR, Proxies, and Email Gateway
• Understanding of various attack frameworks such as MITRE ATT&CK and general adversarial / defensive security techniques (e.g. the Cyber Kill Chain, and NIST)
• Ability to communicate and document technical information effectively towards various audiences
• Experience working with version control systems to facilitate documentation of detection signatures
• Understanding of Threat Actors and their corresponding TTPs
• Ability to translate forensic and threat intelligence reports into detection capabilities
• Experience working with lab environments and simulation tools to test detection efficacy
• Understanding of sigma/yara as a detection framework
• This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S

• Reporting to the Manager, Threat Detection Research, the Threat Detection Researcher will participate in cybersecurity detection strategy, creation, tuning, validation, and correlation to ensure that Deepwatch customers have effective detections in place against an ever-changing threat landscape
• Deepwatch Threat Detection Researchers perform a wide array of tasks in an effort to increase Deepwatch’s detection capabilities, detection fidelity, and ensure Deepwatch is able to effectively detect and respond to cyber threats
• Threat Detection Researchers play a key-role in researching and developing new detection capabilities and refining existing detection capabilities for Deepwatch’s customers
• Through these detection capabilities, Threat Detection Researchers will have a direct impact on Deepwatch’s ability to effectively detect and respond to security threats
• Evaluate current monitoring and detection capabilities to identify areas for improvement
• Manage detection capabilities to ensure appropriate coverage, effective operation, and adherence to deepwatch standards
• Detection Research
• Detection Creation
• Detection Tuning
• Assist in the development of Deepwatch’s detection strategy, researching new threats, technologies and developing new detections
• Research and assist in the design of risk based detection mechanisms

• Insurance plan options, including 100% employer premium contributions and HSA contributions for certain coverage
• Employer paid Life Insurance, Short-term and Long-term Disability, and Employee Assistance Program
• Supplemental coverage options
• Holistic employee Wellness program
• Flexible Time Off
• Paid Parental Leave
• Stock Options
• 401k with company match
• $200 Monthly reimbursement for Cell/Internet
• Annual recognition awards
• Spot bonus awards
• Employee and Customer Referral Bonus Programs
• Annual credit to Deepwatch Swag Store
• Professional Development Allowance: $3,000 in your first year and $6,000 annually thereafter
• Formal Leadership Development Program
• Employee-driven, company-wide Mentoring Program
• Paid time off for volunteering and voting
• Support for company-wide initiatives, such as Stem for Her and local initiatives like Feeding Tampa Bay
• Sponsored Employee Affinity Groups, including Women of Deepwatch, BIPOC, and DW Veterans
• Annual Company Kick Off Event, Monthly All Hands calls, cross functional initiatives, social events, interactive wellness programs, and department offsite meetings
• Peer Recognition Program (Radical Performer)

Total funding: $256m

With increased digital transformation and cloud adoption, businesses have ever-more complex systems to protect, making it harder to ensure everything remains cybersecure. Deepwatch supplies Managed Detection and Response (MDR) solutions, combining its technology and expertise to optimize protections for its clients, mitigate risk, and improve security outcomes.