Systems Specialist, Detection Engineering

at  CDW

Technology never sleeps and neither do we. At CDW, we’re always on, forever vigilant and information security is infused in our DNA. Our System Specialist - Security career puts you on the front-line of defense, the cutting-edge of innovation and plays a crucial role within the CDW Security Operations Center. The System Specialist, Security - Detection Engineering role will be responsible for leading and managing Detection Engineering development and should have a solid understanding and working experience with frameworks like MITRE ATT&CK, Lockheed Martin Kill Chain analysis, and STRIDE threat modeling.
You will work closely with the CDW Security Operations and other internal and external stakeholder teams and will be responsible for maintaining threat detection logic, building new detection capabilities, and translating threat intelligence into actionable methods. As a Detection Engineering specialist, you will also work on enhancing SOC processes, automating repetitive tasks, tuning data sources for better threat identification, and providing operational support for additional SOC tools.
Join us now, secure your future and advance your IT security career like nowhere else.

WHO WE ARE

CDW is a leading technology solutions provider to business, government, education and healthcare organizations in Canada, the United States, and the United Kingdom. Our fingerprints can be found on technology in workplaces of more than 250,000 companies; from fresh-faced startups to international conglomerates. With the breadth of products and services we offer, combined with the expertise of our specialists, there is no request too big or too small. A unified team of challenge takers, diverse thinkers and problem solvers, we believe when you enjoy what you do and who you do it with, you do your best work. And that means everyone wins.

• Design, develop, test, and maintain threat detection logic based on the latest threat intelligence and operational requirements for environments under CDW SOC management
• Build new detection capabilities based on research, analysis of threat actor methodology, and testing of new attack technique
• Translate threat intelligence into actionable detection methods
• Actively work with the Security Operations team and other stakeholders to enhance the processes that support the SOC team’s mission
• Develop and maintain threat hunting playbooks, procedures, and best practices to enhance the efficiency and effectiveness of the threat hunting program
• Identify and automate repetitive or tedious tasks to optimize the threat detection workflow
• Define and tune data sources to better identify and stop threat actor activity
• Provide operations support for additional tooling as required by the SOC
• Provide technical guidance and mentorship to junior team members
• Support purple teaming and other proactive security readiness exercises to help test and improve detection capabilities
• Collaborate with cybersecurity coworkers to develop and implement effective defensive strategies against current and emerging threats