About the Role
We are hiring a Detection Engineer to design, build, and optimize scalable technology solutions aligned with business goals. This role is ideal for a professional who can combine technical expertise, collaboration, and execution to deliver strong business results.
Key Responsibilities
• Implement a layered detection framework based on a data fusion model, correlating signals across endpoint, network, identity, and cloud telemetry to surface complex attack chains that single-source detections miss
• Mature and expand detection frameworks, platforms, and the overall detection portfolio to keep pace with an evolving threat landscape and growing client base
• Build and maintain high-quality, behavioral detections mapped to MITRE ATT&CK, ATLAS, and other relevant frameworks
• Develop and maintain detection-as-code packages at scale with proper versioning, unit and integration testing, and CI/CD-driven deployment
• Apply risk-based prioritization to the detection backlog, focusing engineering effort where it delivers the greatest reduction in organizational risk
• Lead tuning initiatives to reduce false positives and improve alert fidelity
Required Skills
• 5+ years of relevant experience
• Strong communication, stakeholder management, and problem-solving skills
Preferred Qualifications
• Relevant certifications preferred: such as GCIH, GCFA, GCIA, or Offensive Security credentials. • Contributions to open-source detection content (Sigma rules, YARA rules, community detection repos)
• Candidates who can join within Immediate to 7 days are preferred
Job Details
• Employment Type: Permanent
• Location: Sri Lanka
• Work Mode: Onsite/WFO