Cybersecurity Detect Expert

Responsibilities

• Monitor and improve security deviations across various IT services, including Public Cloud and network infrastructure.
• Support and coordinate endpoint protection services, focusing on alert management and incident escalation.
• Fine-tune alerts and thresholds within IT security tools to reduce noise and improve operational efficiency.
• Define and improve SIEM use cases, log management policies, and detection logic.
• Support incident investigations by providing technical expertise in attacker behaviors and telemetry analysis.
• Maintain detection services such as threat hunting, CTI, and phishing alert monitoring.
• Collaborate with Protect and Respond teams to ensure robust detection capabilities are in place for significant breaches.

Requirements

• University degree in Computer Science, Engineering, or a related field.
• 5+ years of experience in cybersecurity, specifically in detection engineering or security operations.
• At least one cybersecurity certification from ISACA, ISC2, SANS Institute, or equivalent.
• Hands-on experience with Google SecOps SIEM/SOAR platforms.
• Experience developing detections using SentinelOne EDR/XDR.
• Strong knowledge of the MITRE ATT&CK framework and adversary behaviors.
• Experience with security monitoring in AWS and GCP cloud environments.
• Proficiency in scripting languages such as Python, PowerShell, or Bash for automation.
• Fluency in English with excellent written and oral communication skills.

Preferred Qualifications

• Possession of a Cybersecurity Master's degree.
• Direct experience working within a Security Operations Center (SOC).
• Experience working in a global, collaborative, or virtual team environment.

About the Company

HOLCIM Group is a global leader in innovative and sustainable building solutions, dedicated to driving progress in the construction industry through advanced technology and responsible practices.