VP, Senior Threat Informed Defense Engineer

About the position We are seeking a skilled VP, Senior Threat Informed Defense Engineer with robust threat detection engineering experience in cloud-first environments. As a key member of the Threat Informed Defense Team, this individual will be responsible for assessing emerging cyber threats against cloud workloads and developing novel detective controls utilizing advanced techniques. In this role the Senior Threat Informed Defense Engineer will proactively identify opportunities for preventative and detective improvements through data analysis and exploration. Join us if you are passionate about staying ahead of the cybersecurity curve, are an inquisitive critical thinker, and thrive in a dynamic, collaborative environment. Responsibilities • Leverage expert knowledge of attacker trade craft, tactics, and techniques to engineer detection/prevention solutions independently across multiple cloud providers (Azure, AWS, GCP). • Expertise in delivering cloud detection posture briefings to stakeholders and devising innovative solutions for complex cloud-related challenges. • Maintain a deep understanding of attack chains and how adversaries move across cloud security planes. • Develop advanced detection logic utilizing various query languages or statistical methodologies. • Perform impactful data analysis and exploration which produces recommended actions in a timely fashion with little or no oversight. • Exhibit expertise in testing TTPs within a secure lab setting and developing custom detection content to address identified gaps. • Foster cross-functional collaboration across IS teams, contributing to the enhancement of detection alerting strategies. • Remain current on Incident Response procedures as they relate to cloud environments. • Proficient in identifying relevant log sources and developing effective detection mechanisms to detect and respond to security threats proactively. • Mentor and train team members. • Demonstrated ability to clearly document findings and present concise briefings to stakeholders. • Perform other duties and/or special projects as assigned. Requirements • Possess expert knowledge of attacker tradecraft and forensic presentation of Tactics, Techniques, and Procedures (TTPs) across Azure, AWS and GCP environments. • Experience in threat intelligence, threat hunt, or red team capacity in which use of threat intelligence and attack-focused frameworks was utilized. • Able to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means. • Experience developing advanced detection content. • Able to function effectively in a dynamic, fast-paced environment. Nice-to-haves • Applicable Information Security professional certifications (e.g., SANS, ISC2) and tool specific certifications. • Agile and code development experience. • Cloud focused security certifications. Benefits • Salary range: 135,000.00 - 230,000.00 USD Annual. • Eligible for an annual bonus based on individual and company performance. Apply tot his job