Senior Threat Detection Engineer - SIEM And Cloud Security (GenAI)

TL;DR

Senior Threat Detection Engineer (GenAI): Developing and refining prebuilt detection logic for hirify.global Security, researching emerging threats, and improving detection quality across multiple data sources and attack surfaces with an accent on cloud, endpoint, identity, network, web, and email domains. Focus on validating rule behavior, analyzing multi-source telemetry, and contributing to coverage improvements throughout the kill chain, especially with Generative AI Security techniques.

Location: Remote (Global), though employment is subject to U.S. and other countries’ export controls for individuals located in or nationals of: Belarus, Cuba, Iran, North Korea, Syria, or Russia, which may require an export license.

Company

hirify.global is the Search AI Company, enabling real-time answers from all data at scale through its Search AI Platform, trusted by over 50% of the Fortune 500.

What you will do

• Create and refine detection logic across multiple domains (endpoint, cloud, identity, network, web, email) using hirify.global data sources.
• Validate rule behavior through functional testing, false-positive review, and iterative tuning.
• Evaluate attack paths across domains to improve detection coverage throughout the kill chain.
• Analyze multi-source telemetry to uncover detection opportunities and strengthen signal-to-noise ratios.
• Support cloud security validation efforts for AWS, Azure, or GCP detections.
• Collaborate with senior researchers to test new detection approaches and incorporate emerging attacker techniques.

Requirements

• Strong security fundamentals and hands-on detection engineering experience.
• Intimate understanding of Generative AI Security, MITRE ATLAS threat techniques, and behaviors.
• Ability to write or validate detections using EQL, KQL, SQL, or similar query languages.
• Understanding of core security concepts across multiple domains (endpoint, cloud, identity, network, web, email).
• Strong analytical and problem-solving skills, especially around false positives and weak-signal detection logic.
• Clear, collaborative communication and willingness to learn from and partner with senior researchers.

Nice to have

• Understanding of the hirify.global Security Solution, hirify.global’s prebuilt rules, query languages, or Common Schema.
• Experience with exposure validation, security control testing, or attack path validation platforms.
• Ability to generate or script test telemetry using Python, Bash, PowerShell, or simple simulation tools.
• Contributions to community detection content, blogs, OSINT research, or security rule repositories.

Culture & Benefits

• Competitive pay based on work, not previous salary.
• Health coverage for you and your family in many locations.
• Flexible locations and schedules for many roles.
• Generous number of vacation days each year.
• Impact matching program for financial donations and service (up to $2000).
• Up to 40 hours each year for volunteer projects.
• Minimum of 16 weeks of parental leave.