Detection Engineer
24 hours ago
Vigo
We’re hiring a Detection Engineer ¿Quiere enviar su solicitud? Lea toda la información sobre este puesto a continuación y luego pulse el botón de solicitar. Location: Barcelona / Spain - Remote Salary: €28,000–€34,000 gross per year, depending on experience and capabilities We are looking for a Detection Engineer for a cybersecurity consulting and services company (Barcelona-based, international scope) that has been protecting organizations for years across incident response, digital forensics, managed services, threat intelligence, and Red & Purple Team engagements. You will join a growing cybersecurity team focused on building and improving advanced detection capabilities for clients across complex environments. This is a great opportunity for someone with 1–2 years of experience in detection engineering or SOC operations who wants to work closely with both offensive and defensive teams, improve real-world detection logic, and grow in a highly technical environment. About the role As a Detection Engineer, you will play a key role in strengthening clients’ security posture. You will apply your knowledge of adversary tactics and techniques to design, improve, and tune advanced detection rules that help identify and respond effectively to security threats. You will work in a multidisciplinary cybersecurity environment, collaborating with experts across Red Team, Blue Team, threat intelligence, and incident response. This role is ideal for someone who enjoys transforming attacker behavior into meaningful detections and wants to contribute to both strategy and hands-on engineering. What you’ll do • Design, develop, and tune detection rules in Microsoft Sentinel and Microsoft Defender to enhance incident detection and response capabilities., • Analyze attacker simulation results to identify weaknesses in security controls and detection coverage., • Develop threat detection and mitigation strategies based on adversary behavior and emerging attack techniques., • Automate and optimize workflows by building scripts and tools that improve security assessments and reporting processes., • Collaborate with offensive and defensive teams to continuously improve detection quality and visibility., • Contribute to proactive threat detection efforts by leveraging telemetry, logs, and security event analysis. What we’re looking for • Degree in Engineering, Cybersecurity, or a related field, or equivalent demonstrable professional experience., • 1–2 years of experience in one or more of the following areas:, • Detection Engineering, • SOC Analysis with hands-on experience creating and/or optimizing alerts in SIEM and/or EDR platforms, • Practical knowledge of Kusto Query Language (KQL) in Microsoft environments., • Strong understanding of Windows logs, telemetry, and event analysis , with a focus on identifying adversary tactics and techniques., • Solid knowledge of MITRE ATT&CK and adversary TTPs ., • Experience with SIEM and EDR technologies such as Microsoft Sentinel/Defender, CrowdStrike, Cortex, Splunk, Elastic, LogRhythm, QRadar, Chronicle, or Wazuh is highly valued., • Scripting skills in Python, PowerShell, and/or Bash for automation and tool development., • Good knowledge of Windows and UNIX/Linux system administration ., • Strong understanding of networking fundamentals and protocols , including TCP/IP, DHCP, DNS , and related technologies., • A Purple Team mindset , with the ability to think like an attacker while strengthening defensive capabilities., • Clear and effective English communication skills in technical and international environments., • Strong analytical, organizational, and problem-solving skills, with attention to detail and a proactive attitude., • Cybersecurity certifications or postgraduate training are a plus. What’s offered • The opportunity to join an international, young, and dynamic team in a strong technical environment., • Close collaboration with Red Team and Blue Team professionals, gaining exposure to real-world attacks and the latest adversary techniques., • Access to a broad range of detection and security technologies, including EDR, SIEM, threat intelligence, and other security tools ., • Continuous internal and external training, including support for certifications and annual conference attendance ., • A personalized career development plan tailored to your interests and growth., • Flexible remote work options or access to comfortable offices in Barcelona ., • Work-life balance support and flexibility., • Summer intensive working hours ., • Flexible compensation plan , including restaurant card, transport, childcare, and training benefits., • Private health insurance . Interested? xcskxlj Apply via LinkedIn or submit your CV via . Hay opciones de teletrabajo/trabajo desde casa disponibles para este puesto.
Waiters
Sales & Marketing
Chef & Cook
Retail
Salon & Beauty
Construction & Trades
Accounting & Finance
Animal Care
Bar Staff
Child Care
Cleaning
Customer Service
Driver & Delivery
Education
Engineering
Entertainment
Events & Promotion
Fashion
Healthcare
Host & Hostess
Information Technology
Kitchen Porter
Legal
Management
Manufacturing
Office & Admin
Science
Security
Sports & Wellness
Warehouse
Writing & Editing
Other