Detection Engineer Job at Bell Canada
As the largest high-tech team in Canada, Network and Technology Services builds cutting edge fibre and 5G networks that drive how Canadians connect with each other and the world! Our team is at the forefront of developing Bell’s leading products and services: Fibe TV and Internet, Wireless, Smart Home, cloud, security and IoT. We enable the delivery of the best content from Crave, TSN/RDS, iHeart Radio and dozens of other leading media properties to our customers any time, on any device.
Overview
As a Detection Engineer within the Content Team, a candidate is expected to utilize his/her technical expertise to create detection logic to identify prioritized threats using logs and security telemetry. You will work collaboratively to implement detections that observes system activity and recognizes malicious behavior within multiple SIEM platforms. You would help develop creative and resourceful ways to identify gaps and detect threats while leveraging core OS telemetry such as file system, memory, process, and network. You would collaborate with multiple teams to make significant contributions to the design and implementation of major development projects.
Job Duties / Accoutabilities
- Build mechanisms that combine multiple detection signals to create higher fidelity threat detections.
- Develop and/or engineer security detections as code.
- Analyze the latest attacker techniques and develop approaches to detect them across the company's diverse environments and endpoints.
- Develop and maintain parsers in connectors to ensure logs are properly organized and normalized.
- Automate to improve identification and response time and reduce impact of incidents.
- Work cross functionally to perform proactive Threat Hunting and Purple Teaming.
- Participate in various meetings such as daily stand-ups, project reports and status calls, etc.
- Exercise a technical advisory role; endorse a mentoring approach to other members of the Security Operations content development team
Critical Skills / Competencies:
- University or college degree in Computer Science/Engineering
- 5 to 10 years of equivalent experience in the cyber security domain.
- 3+ years of technical experience with one or more SIEM and UEBA platforms (e.g. Splunk, Elastic, ArcSight, QRadar, LogRhythm, FortiSiem, etc)
- Knowledge of at least one scripting language (Python, Perl, Ruby, etc.) as well as regular expressions.
- Understanding of various security frameworks and/or methodologies (e.g. MITRE ATT&CK, Cyber Kill Chain, NIST, etc)
- Experience with the following technologies is highly desirable: Splunk, Apache NiFi, Apache Kafka, Cloudera, Elastic Stack (Logstash, Elasticsearch, Kibana). Elastic Security
- Host level detection with tools such as Auditbeat, Osquery, EDR or Sysmon
- Working knowledge of GIT, JIRA, Jenkins, Docker, Kafka other Agile CI/CD and Kanban boards.
- Ability to work independently with minimal direction; self-starter/self-motivated.
#EmployeeReferralProgram
Adequate knowledge of French is required for positions in Quebec.
Additional Information:
Position Type: Management
Job Status: Regular - Full Time
Job Location: Canada : Ontario : Timmins || Canada : Quebec : Montreal
Flexible work profile: Mobile
Application Deadline: 03/09/2023
All team members are expected to reside in Canada and within a reasonable commuting distance from their work location to ensure that they are able to come to the office as required, whether the visit is planned or unplanned.
Please apply directly online to be considered for this role. Applications through email will not be accepted.
At Bell, we don’t just accept difference - we celebrate it. We’re committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential. We welcome and encourage applications from people with disabilities.
Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email your recruiter directly or recruitment@bell.ca to make arrangements. If you have questions regarding accessible employment at Bell please email our Diversity & Inclusion Team at inclusion@bell.ca.
Created: Canada, ON, 1825
Bell, one of Canada's Top 100 Employers.
Please Note :
nvalabs.org is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, nvalabs.org provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.