Security DRE (Detection & Response Engineer)

About Exaforce

Exaforce is a U.S.-based startup at the forefront of cloud security. Founded by security and AI experts from Google, PANW, and F5, Exaforce is well funded and backed by top-tier VCs. Exaforce is on a mission to simplify security and operations in the Cloud. It enables enterprises to force multiple their security teams by giving them unprecedented visibility into their cloud environments, identifying risk, detecting previously unknown threats, while giving them the tools they need to quickly remedy the situation without the manual heavylift. 

Position Overview
We are seeking a skilled and proactive Detection and Response Engineer to join our global cybersecurity MDR team. In this role, you will be crucial in enhancing our capabilities to detect, analyze, and respond to security threats. You will be responsible for maintaining detection infrastructure for various customers, threat hunting, analysing and correlating incidents and actively participating in incident response activities.

Key Responsibilities

• Investigate security incidents related to network traffic, IAM violations, and unauthorized access.
• Analyse security detection rules, alerts, and correlation logic to identify malicious activities.
• Conduct threat hunting activities to proactively identify potential threats within the environment.
• Participate in incident response efforts, including containment, eradication, and recovery
• Collaboration with the software development & SRE teams 
• Onboard customers and guide them through integration with MDR platforms
• Ensure customer satisfaction and provide strategic security recommendations.
• This is a fully onsite role that requires high availability and proactive engagement.
• On-call / rotational work required.
  

Qualifications

• 3-5+ years in cybersecurity operations and advanced threat detection
• Experience with SIEM platforms, Security orchestration platforms (SOAR) or specialized MDR providers(Splunk, QRadar, CrowdStrike Falcon, Datadog, SentinelOne, Microsoft Defender, Palo Alto Cortex XDR, Panther, etc)
• Bachelor's degree in Computer Science, Information Security, or a related field

Preferred Skills

• Knowledge of threat hunting methodologies
• Security aspects of key cloud providers like AWS, Azure, GCP.
• Security aspects of various repositories like Github and Atlassian. 
• Risk detection analysis
• Experience with databases and SQL.
• Scripting  (Python, Bash)
• Good written and verbal communication skills.
• Ability to work in a team and potentially in a 24/7 environment.
• MITRE ATT&CK framework knowledge is a plus
• Cyber security certifications are a plus.

What We Offer

• A dynamic and innovative work environment at a leading-edge technology company.
• Opportunities for professional growth and development.
• Competitive salary and benefits package.
• The chance to work with a talented and passionate team dedicated to making a real impact in the cybersecurity industry.
  

How to Apply‍

Interested candidates are invited to submit their resume and cover letter outlining their qualifications and experience. Please send your application to contact@exaforce.com with the subject line “Security DRE”.

Equal Opportunity Employer

Exaforce is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace where all individuals are treated with respect and dignity. We believe that diversity drives innovation and strengthens our company. We welcome applicants from all backgrounds, and we do not discriminate based on race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. All employment decisions are based on qualifications, merit, and business needs.