Toyota

Cyber Detection Engineer, Lead

Toyota$100K — $130K *
Plano, TX 75025In-Person
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in cybersecurity engineering roles
  • Strong skills in detection and response utilizing various security tools
  • Proficiency in detection rule writing for EDR and SIEM solutions
  • Experience with threat intelligence integration into detection strategies
  • Familiarity with CI/CD and detection-as-code practices
  • Ability to collaborate and mentor junior team members
  • Background in regulated industries is a plus

Responsibilities

  • Design and implement detection systems for detecting malicious activities
  • Develop and maintain detection rules across various security products
  • Utilize threat intelligence to inform and improve detection strategies
  • Collaborate with threat hunters and incident response teams on automated detections
  • Ensure compliance of detection systems with log ingestion and parsing requirements
  • Engage in continuous improvement of detection strategies against evolving threats
  • Participate in the automation of detection processes using AI and machine learning

Benefits

  • Flexible work environment focused on teamwork and respect
  • Professional growth programs, including tuition reimbursement
  • Automotive purchase and leasing programs for team members
  • Comprehensive health care and wellness plans for families
  • 401(k) Savings Plan with company match and annual contributions
  • Paid holidays and vacation time
Full Job Description
Overview

Who we're looking for

A Cyber Security Detection Engineer who focuses on identifying and mitigating cyber threats through the development of detection mechanisms. This role is crucial in closing the detection gap between potential threats and the organization's ability to identify them. Detection engineers work within the SOC team to create and maintain detection rules, analyze alerts, and continuously improve security measures based on evolving threats.

What you'll be doing
  • Design and Implement Detection Systems: Create systems and processes to detect malicious activities and behaviors, ensuring that detection mechanisms are tailored to the organization's specific environment and threat landscape
  • Develop Detection Rules: Write and maintain detection rules in various security products to identify cyber threats effectively. This includes analyzing false positives and true positives to refine these rules continuously
  • Utilize Threat Intelligence: Leverage cyber threat intelligence from our CTI team to inform detection strategies, translating strategic intelligence into actionable detection rules
  • Collaborate with Other Teams: Work closely with threat hunters and incident response teams to develop automated detections based on observed suspicious activities
  • Collaborate with Security Engineering to ensure logs are ingested, routed, filtered and parsed to ensure detections have the required log sources and log fields
  • Continuous Improvement: Engage in ongoing learning and adaptation of detection strategies to keep pace with evolving cyber threats, including AI-based attack vectors
  • Conduct reviews of current detection logic to identify any gaps as well as participate with other teams on log ingestion reviews and requests to ensure logging and detection strategy remains executable and relevant to threat landscape
  • Orchestration and Automation: Collaborate with other teams and the SOC to identify trends or improvements that can be made with AI/ML, automation or orchestration and implement automation, orchestration and AI/ML systems
  • Incident Response: Detect and Respond to malicious activities alongside the SOC analysts and Incident Response team
  • Organization: Utilize CI/CD and Detection-as-code concepts to ensure the detection pipeline is scalable, maintainable and testable
  • Mentorship: As a lead, collaborate and mentor junior members of the SOC in detection engineering concepts, design and implementation
    Tech Requirements: Demonstrated experience with Detection and response using EDR, SIEM, anti-ransomware, Cloud, Network, Identity and other security tools


Added bonus if you have
  • A Bachelor's degree in a relevant field (e.g., Cybersecurity, Computer Science, Engineering, Information Technology) or equivalent work experience.
  • Experience in a regulated industry (e.g., finance, healthcare, government).
  • Proficiency in additional query and scripting languages (e.g., CQL, SQL, KQL, SPL, EQL, Yara, Bash, python).
  • 3-5 experience as a cybersecurity engineer


What we'll bring

During your interview process, our team will provide detailed information about our industry-leading benefits and career development opportunities. Here are a few highlights:
  • A work environment built on teamwork, flexibility, and respect.
  • Professional growth and development programs to help advance your career, including tuition reimbursement.
  • Team Member Vehicle Purchase Discount.
  • Toyota Team Member Lease Vehicle Program (if applicable).
  • Comprehensive health care and wellness plans for your entire family.
  • Toyota 401(k) Savings Plan with a company match, plus an annual retirement contribution from Toyota regardless of your own contributions.
  • Paid holidays and paid time off.


About Toyota

Toyota Motor Corporation is a Japanese multinational automotive manufacturer headquartered in Toyota City, Aichi, Japan. The company was founded in 1937 by Kiichiro Toyoda and has since grown to become the world's largest automotive manufacturer. Toyota Motor Corporation produces a wide range of vehicles including cars, trucks, and buses. The company is committed to sustainability and has set a goal of achieving zero carbon emissions by 2050. Toyota Motor Corporation has operations in over 170 countries and regions around the world.
Learn more about Toyota
Size
372,817 employees
Market Cap
$225.1 billion
Industry
Net Income
$1,531.2 billion
Founded
1937
5 Year Trend
+2.6%
Revenue
$26,625.1 billion
NASDAQ

Similar Jobs

More Jobs at Toyota

More Information Technology Jobs

Find similar Cyber Detection Engineer, Lead jobs: