Join a Fortune 200 global reinsurance company focused on life and health solutions. We're building an in-house threat detection and incident response function across APAC, and we need a hands-on Senior Threat Detection Engineer to drive this initiative.
Key Responsibilities:
- Lead alert triage, incident response, and threat investigations across endpoint, network, cloud, and identity platforms
- Design, build, and tune SIEM (Splunk) and EDR (CrowdStrike, Microsoft Defender) detections
- Develop automation and workflows using Python, PowerShell, or similar tools to scale SecOps efficiency
- Identify and address telemetry gaps, validate detection coverage, and perform purple team exercises
- Manage and enhance security tooling while collaborating with regional teams to implement risk-reduction initiatives
- Produce metrics and reporting to track security operations and support leadership decisions
Requirements:
- 10 years in cybersecurity, threat detection, incident response, or SecOps
- Strong experience in threat detection, detection engineering, or threat hunting
- Hands-on with SIEM, EDR, cloud security (AWS/Azure/GCP), and IAM / AAA technologies
- Skilled in Windows, Linux, and Mac internals, networking, DNS, and email security
- Proven experience with automation (Python/PowerShell) and security tooling
- Strong analytical, investigative, and communication skills
Nice to Have:
- Exposure to forensic tools (FTK, EnCase, X-Ways, SIFT) or ServiceNow
- Industry certifications, contributions, or research publications
