Consultant, Detection Engineer
Description and Requirements
Role Value Proposition:
The Detection Engineer will be part of MetLife's Threat Research Team and will be focused on building and expanding detection capabilities using a suite of security tools. This role will be primarily focused on researching threat actor tactics, techniques, and procedures, developing detection capabilities, and identifying ways to improve visibility using the security tools and products.
Key Responsibilities:
- Develop and deploy detections, automations, and alerting infrastructure to identify security events and incidents
- Find, gather, and normalize internal and external data to enhance our Security Information and Event Management System (SIEM)
- Aid research and engineering initiatives to automate and orchestrate security operations for efficiencies and diligence in support of Threat Research functions and operations
- Analyze activity associated with both successful and unsuccessful intrusions by advanced attackers
- Work with key stakeholders to incorporate high quality security and alerting into their operational workflows
- Build and maintain detection and response metrics and dashboards
- Actively participate in the development, documentation, and implementation of new processes to expand and mature capabilities for the organization
Essential Business Experience and Technical Skills:
Required:
- Strong understanding of Windows operating systems and command line tools, network protocols, TCP/IP fundamentals, and security infrastructure
- Knowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, IRC etc.
- Scripting and development experience for analysis and automating repeatable processes.
- Experience with commercial and open source Threat Intelligence Platforms (TIPs)
- Strong communication skills, both written and verbal
- Ability to collaborate with different teams
Preferred:
- Strong experience analyzing raw log files (i.e. firewall, IDS, PCAP, system logs)and performing data correlation.
- Experience with dissamblers/debuggers
- Experience working in a Security Operations Center or on an Incident Response Team
Travel
0-5%
Benefits We Offer
Our U.S. benefits address holistic well-being with programs for physical and mental health, financial wellness, and support for families. We offer a comprehensive health plan that includes medical/prescription drug and vision, dental insurance, and no-cost short- and long-term disability. We also provide company-paid life insurance and legal services, a retirement pension funded entirely by MetLife and 401(k) with employer matching, group discounts on voluntary insurance products including auto and home, pet, critical illness, hospital indemnity, and accident insurance, as well as Employee Assistance Program (EAP) and digital mental health programs, parental leave, volunteer time off, tuition assistance and much more!
About MetLife
Recognized on Fortune magazine's list of the 2023 "World's Most Admired Companies" as well as the 2023 Fortune 100 Best Companies to Work For ®, MetLife , through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.
Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we're inspired to transform the next century in financial services. At MetLife, it's #AllTogetherPossible . Join us!
Equal Employment Opportunity/Disability/Veterans
If you need an accommodation due to a disability, please email us at [email protected]. This information will be held in confidence and used only to determine an appropriate accommodation for the application process.
MetLife maintains a drug-free workplace.
#BI-Hybrid