What are the responsibilities and job description for the Detection Engineer position at Heitmeyer Consulting?
Job Summary:
Heitmeyer has banking client that has a need within their Product and Infrastructure Security team for a Detection Engineer who can manage the configuration of scanning tools within the environment and support the network security architecture. The role is open for full remote.
Job Description:
The Detection Engineer will assess the networks and applications across the enterprise and identify issues where there is a variance to accepted configurations, policies and standards. This individual will be responsible for analyzing, managing and reporting vulnerabilities across enterprise systems, ensuring compliance with regulatory requirements and optimizing security tool integrations.
Top Required Skills:
Heitmeyer has banking client that has a need within their Product and Infrastructure Security team for a Detection Engineer who can manage the configuration of scanning tools within the environment and support the network security architecture. The role is open for full remote.
Job Description:
The Detection Engineer will assess the networks and applications across the enterprise and identify issues where there is a variance to accepted configurations, policies and standards. This individual will be responsible for analyzing, managing and reporting vulnerabilities across enterprise systems, ensuring compliance with regulatory requirements and optimizing security tool integrations.
Top Required Skills:
- Possess significant experience in vulnerability scanning tools like Qualys (preferred since using in environment), Tenable or Rapid7 – prefer 5 years.
- Background in working with information security aggregation tool like Nucleus (preferred since using in environment) or ArmorCode.
- Experience conducting security risk assessments – vulnerability scanning, SIEM, penetration testing, network administration control, advanced malware protection.
- Knowledge of network security architecture including topology, protocols, components and principles.
- Cloud security experience – prefer GCP but AWS or Azure acceptable.
- Ability to articulate how vulnerabilities translate into cyber-risks.
- Highly skilled in building documentation around coding logs, solution development, managing risk – support audit and regulatory reviews.
- Outstanding engineering background to ensure information security development configuration managed properly to reduce risk and improve security.
- Proficiency in scripting languages such as JavaScript, Python, PowerShell, Bash, PHP.
- Executive-level communication with High EQ – ability to present to senior leadership and across all levels within the bank
- Information Security Certifications – CISSP, CVA, CIPP, CRISC, CISM, SANS GIAC.
- Background within financial services would be extremely beneficial but not required.
- Responsible for leading enterprise vulnerability management efforts to design and implement systems and processes to proactively identify and respond to security incidents.
- Develop detection rules and alerts within security tools while working across security, IT, compliance and senior leadership to ensure a secure and resilient infrastructure.
- Manage across multiple tools to ensure proper configuration and tuning of vulnerability management systems to maximize detection and minimize false positive results.
- Develop reporting on key vulnerability metrics and KRIs while writing rules in SIEMs and alerting platforms to provide visibility into activity.
- Create vulnerability policy and procedures along with full engineering documentation to capture governance and view into how manage risk, logs and remediation efforts.
- Manage vulnerability and configuration scanning tools – set up, scheduling, tuning profiles.
- Coordinate and track resolution efforts across multiple teams and stakeholders including working with risk and compliance teams to ensure alignment with security frameworks (NIST, ISO, CIS).