Platform Engineer, Detections

Join to apply for the Platform Engineer, Detections role at NuHarbor Security

Join to apply for the Platform Engineer, Detections role at NuHarbor Security

The Company

Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We're growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission.

The Role

The Platform Engineer, Detections develops and maintains NuHarbor's security content library as a member of the Detection Engineering team in the Platform Engineering group. This is a mid-career position within the Detection Engineering team, which sources and develops detections for the most common and widespread threats, custom development on 0-day and edge-case threats, efficiently delivering detection, correlation, alerting, AI/ML analytics, runbooks, playbook templates, and response plans across the MSSP client base. The Platform Engineer, Detections prioritizes client value, modern DevSecOps engineering practices, and ubiquitous automation while driving service improvement and efficiency across our Detection Engineering, Threat Intelligence, SIEM operations, MDR, and other service areas. The Platform Engineer, Detections collaborates on, contributes to, and follows practices and patterns to build necessary automation and infrastructure, leading adoption across the organization.

Reports to: Director, Infrastructure & Software Engineering.

What You'll Do

• Lives by the NuHarbor corporate values: Help Clients Win, Always Improve, Protect the House
• Implement and support features, custom tooling, and automation, following an agile development process, as a member of the Detection Engineering group, optimizing service delivery with technology.
• Operate and maintain custom tooling, including CI/CD pipelines, to iterate configuration in client environments reliably, and consistently.
• Deploy and administer commercial, open source, and internally developed software in public cloud environments using infrastructure-as-code and continuous delivery pipelines.
• Provide guidance and mentorship to technical staff members, from all teams, clearing a path to excellence with enthusiasm and confidence.
• Support the execution of our automation strategy, providing contextual data to improve the cybersecurity services, making them more effective for our clients.
• Provide guidance and mentorship to Security Operations Engineers and Analysts on using custom tooling and following DevOps and security best practices.
• Stretch and grow skills and experience on track to Senior Platform Engineer, Detections.
  
  

Your foundation. The requirements for this role:

• Bachelor's Degree and four (4) years of experience working in a professional software engineering position.
• Typical Degrees: Software Development, Computer Science, Information Technology, Cybersecurity, Data Analytics, Mathematics, or related field(s).
• In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required.
• Experience should include:
• Two (2) years of development experience in Python or other common scripting languages used in security technology integration.
• Two (2) years of experience in key SIEM techniques and technologies such as Splunk, Splunk Enterprise Security (ES), or Microsoft Sentinel.
• Two (2) years of experience working with "infrastructure-as-code", following DevOps practices, building and maintaining CI/CD tooling.
• Demonstrated success developing with one or more storage technologies, including relational databases, key-value stores, columnar databases, etc.
• Experience with:
• DevOps, Continuous Integration / Continuous Delivery.
• Designing, testing, and developing secure cloud-based services.
• Serverless application architectures.
• Software Engineering practices such as iterative and incremental development, source code management, continuous integration/delivery, DevSecOps, and Infrastructure as Code.
• Strong Linux and Windows proficiency.
• Strong understanding of security concepts and operations.
• Strong understanding of networking concepts and architecture.
• Engineering event detection & response tuning.
• Familiarity with network, system, and application layer attacks and mitigations.
• Up to date with engineering best practices, security technology trends, tools, and frameworks
• Strong communications skills to present and advocate for technical decisions in support of the organizational vision.
• Must be a citizen of the United States.
  

Additional capabilities that will differentiate you for this role:

• Object-Oriented Programming, Data validation.
• Experience working in an Agile development process.
• At least four (4) years of development experience and proficiency with:
• Query languages such as Splunk Search Processing Language (SPL), or Microsoft Kusto Query Language (KQL).
• Automating software and system administration.
• Working in cloud infrastructures and using IaC (Infrastructure as Code).
• Experience working with "detections-as-code", following DevOps practices, building and maintaining CI/CD tooling.
• Knowledge of MITRE ATT&CK framework and general adversarial / defensive security techniques.
• Experience in Security Operations Center (SOC) content development and automation implementations.
• Experience with Terraform.
• Familiarity with the NIST Cyber Security Framework (CSF), common security controls and their purposes, and technologies that supply those controls.
  

Base Salary for this role is targeted at $109,000 - $134,000 annually. *Salary based on Burlington, VT salary data. Offer is based on candidate geography. Additionally, this role is eligible for the company bonus plan at a 10% target.

NuHarbor Security hires in the following states: AZ, CO, FL, GA, IL, IN, IA, MA, MD, ME, MI, MN, MO, MT, NC, NE, NH, NJ, NY, OH, OR, PA, SC, TX, VT, VA, WA

The Rewards

What you can expect:

• The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market.
• An organization that recognizes and rewards employee commitment and contribution to our customers' satisfaction and success
• Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption.
• A collaborative and driven working environment in a rapidly growing company and market
• A fun and social working environment where you are encouraged to be your true self.
  
  

You can also expect competitive benefits, including generous PTO, and paid time to give back in your community (Volunteer Time Off, VTO).

We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you'd like to be a part of, we'd like to hear from you.

AAP/EEO Statement

The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled.

NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Engineering and Information Technology
• Industries
  Technology, Information and Internet

Referrals increase your chances of interviewing at NuHarbor Security by 2x

Get notified about new Platform Engineer jobs in Burlington, VT.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.