Day-to-Day Insight Global is looking for a Detection Security Consultant focused on managing detection context. This environment will be running in 2-week sprints, and working cross functionally with the SOC. You will be responsible for building alerts, tuning alerts, keeping an eye on trending data, and implementing feedback from SOC team.

Required Skills & Experience

• 5-15+ years of experience within Information Security working within large enterprises (20,000+ endpoints)
• 4+ years of working experience focused within Detection Engineering
• Experience working with managing alerts, and tuning policies for Microsoft Sentinel (SIEM)
• MITRE ATT&CK framework understanding
• Risk measurement, reporting, remediation
• Good communication and problem solving skills
• MS (Microsoft) Defender for Endpoint security deployed for servers
• Linux Redhat and Windows Servers, experience deploying and securing
• Building detection content for the SIEM environment

Nice to Have Skills & Experience

• Splunk, LogRhythm, Arcsight
• Experience working for a large Canadian Bank