Rearc

• Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities • Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy • Design enrichment pipelines and automation workflows to enhance the precision of threat detections • Develop correlation logic and automated processes to create high-fidelity threat alerts • Build compliance and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance • Create automation playbooks for incident triage and response • Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment • Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture • Support enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams by providing dashboards and other data exploration tools • Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed • Work closely with customer teams, including Cybersecurity Operations Center (CSOC), Operational Technology (OT), and Incident Response (IR) teams, to ensure detections are actionable and relevant • Provide feedback to improve the customer's security framework and overall security monitoring strategy

• Collaborate with Colleagues – Work closely with colleagues to understand customers' business objectives and technical challenges, contributing to the design and development of effective GenAI solutions tailored to client needs. • Apply GenAI Principles – Utilize modern tools and frameworks like LangGraph, to build scalable, reliable, and maintainable Compound AI systems. • Leverage your understanding of AI fundamentals to ensure every project meets rigorous industry and ethical standards. • Adapt to the latest Technologies & Patterns – continue to research, learn, and stay abreast of the most recent state of the art for AI application development. • Promote Knowledge Sharing –Bolster our culture of continuous learning by sharing knowledge about AI engineering best practices through blog posts, articles, and internal talks. Support a collaborative environment that fosters shared expertise and ongoing innovation across our community.

• Collaborate with Rearc customers to design detection strategies • Support the development of modern cybersecurity monitoring programs • Craft tailored security detections leveraging SIEM, SOAR, EDR, and NDR services • Develop robust threat detection capabilities using NDR, EDR, SIEM • Optimize detection rules using real-time data streaming • Design enrichment pipelines and automation workflows • Develop correlation logic for high-fidelity threat alerts • Build compliance and recoverability of Data Analytics solutions • Create automation playbooks for incident triage and response • Align detection content with customer-specific Use Case Frameworks • Collaborate with customer cybersecurity teams to enhance enterprise posture • Stay aware of emerging cybersecurity threats and trends

• Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities. • Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy. • Design enrichment pipelines and automation workflows to enhance the precision of threat detections. • Develop correlation logic and automated processes to create high-fidelity threat alerts. • Build compliance and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance. • Create automation playbooks for incident triage and response. • Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment. • Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture. • Support enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams by providing dashboards and other data exploration tools. • Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed. • Work closely with customer teams, including Cybersecurity Operations Center (CSOC), Operational Technology (OT), and Incident Response (IR) teams, to ensure detections are actionable and relevant. • Provide feedback to improve the customer's security framework and overall security monitoring strategy.

• Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities • Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy • Design enrichment pipelines and automation workflows to enhance the precision of threat detections • Develop correlation logic and automated processes to create high-fidelity threat alerts • Build compliance and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance • Create automation playbooks for incident triage and response • Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment • Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture • Support enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams by providing dashboards and other data exploration tools • Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed • Work closely with customer teams, including Cybersecurity Operations Center (CSOC), Operational Technology (OT), and Incident Response (IR) teams, to ensure detections are actionable and relevant • Provide feedback to improve the customer's security framework and overall security monitoring strategy

Role Overview Rearc is looking for a Cybersecurity Threat Detection Engineer with proactive communication skills, a foundation in DevSecOps, Detection-As-Code, deep purple team technical expertise, and an entrepreneurial approach to join our growing Cybersecurity practice. This role involves partnering with Rearc customers to design cutting-edge detection strategies and support the development of top-tier, modern cybersecurity monitoring programs. You will craft tailored security detections to strengthen our clients' cybersecurity efforts by leveraging Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), Endpoint Detection and Response (EDR), and Network Detection and Response (NDR) services. What You Bring - Enthusiasm about developing and evangelizing services in the cyber space. - Strong cloud, security, SIEM and data engineering fundamentals. What You'll Do - Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities. - Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy. - Design enrichment pipelines and automation workflows to enhance the precision of threat detections. - Develop correlation logic and automated processes to create high-fidelity threat alerts. - Build compliance and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance. - Create automation playbooks for incident triage and response. - Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment. - Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture. - Support enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams by providing dashboards and other data exploration tools. - Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed. - Work closely with customer teams, including Cybersecurity Operations Center (CSOC), Operational Technology (OT), and Incident Response (IR) teams, to ensure detections are actionable and relevant. - Provide feedback to improve the customer's security framework and overall security monitoring strategy. In this role, you will combine technical expertise with continual situational awareness of emerging threats, driving client success while staying at the cutting edge of cyber security innovations. Qualifications - 5-8 years of experience in Cybersecurity with a focus on: - - Log streaming - Cybersecurity data lakes and data warehousing - SOAR engineering - SIEM engineering, administration, architecture, and operations - Data science, statistical analysis, and threat detection development - Integrating disparate IT, OT, and business applications into SIEM systems - Bachelor's degree in Management Information Systems, Computer Science, or a related field - A strong passion for Cybersecurity and a commitment to staying current with industry trends, best practices, and tools - Proven experience in documenting, socializing, and operationalizing Cybersecurity technologies and processes - Prior programming experience in Python, SQL, and Apache Spark - Solid understanding of common attack techniques and their practical applications - Demonstrated ability to work effectively across multiple teams, building cross-functional relationships with individuals of varying technical expertise - A self-starter with a proven ability to thrive in fast-paced environments - Strong technical communication skills, both written and verbal Nice To Have: - Prior experience with platforms like Databricks, Cribl, Tines, or other cybersecurity lakehouse providers Some More About Us At Rearc, our mission is straightforward - empower engineers with the best tools possible to make an impact within their industry. We pride ourselves on fostering an environment where creativity flourishes, bureaucracy is non-existent, and individuals are encouraged to challenge the status quo. We're not just a company; we're a community of problem-solvers dedicated to improving the lives of fellow software engineers. Our commitment is simple - finding the right fit for our team and cultivating a desire to make things better. If you're a cloud professional intrigued by our problem space and eager to make a difference, you've come to the right place. Join us, and let's solve problems together!

Role Overview Rearc is looking for a Cybersecurity Threat Detection Engineer with proactive communication skills, a foundation in DevSecOps, Detection-As-Code, deep purple team technical expertise, and an entrepreneurial approach to join our growing Cybersecurity practice. This role involves partnering with Rearc customers to design cutting-edge detection strategies and support the development of top-tier, modern cybersecurity monitoring programs. You will craft tailored security detections to strengthen our clients' cybersecurity efforts by leveraging Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), Endpoint Detection and Response (EDR), and Network Detection and Response (NDR) services. What You Bring - Enthusiasm about developing and evangelizing services in the cyber space. - Strong cloud, security, SIEM and data engineering fundamentals. What You'll Do - Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities. - Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy. - Design enrichment pipelines and automation workflows to enhance the precision of threat detections. - Develop correlation logic and automated processes to create high-fidelity threat alerts. - Build compliance and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance. - Create automation playbooks for incident triage and response. - Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment. - Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture. - Support enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams by providing dashboards and other data exploration tools. - Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed. - Work closely with customer teams, including Cybersecurity Operations Center (CSOC), Operational Technology (OT), and Incident Response (IR) teams, to ensure detections are actionable and relevant. - Provide feedback to improve the customer's security framework and overall security monitoring strategy. In this role, you will combine technical expertise with continual situational awareness of emerging threats, driving client success while staying at the cutting edge of cyber security innovations. Qualifications - 8+ years of experience in Cybersecurity with a focus on: - - Log streaming - Cybersecurity data lakes and data warehousing - SOAR engineering - SIEM engineering, administration, architecture, and operations - Data science, statistical analysis, and threat detection development - Integrating disparate IT, OT, and business applications into SIEM systems - Bachelor's degree in Management Information Systems, Computer Science, or a related field - A strong passion for Cybersecurity and a commitment to staying current with industry trends, best practices, and tools - Proven experience in documenting, socializing, and operationalizing Cybersecurity technologies and processes - Prior programming experience in Python, SQL, and Apache Spark - Solid understanding of common attack techniques and their practical applications - Demonstrated ability to work effectively across multiple teams, building cross-functional relationships with individuals of varying technical expertise - A self-starter with a proven ability to thrive in fast-paced environments - Strong technical communication skills, both written and verbal Nice To Have: - Prior experience with platforms like Databricks, Cribl, Tines, or other cybersecurity lakehouse providers Some More About Us At Rearc, our mission is straightforward - empower engineers with the best tools possible to make an impact within their industry. We pride ourselves on fostering an environment where creativity flourishes, bureaucracy is non-existent, and individuals are encouraged to challenge the status quo. We're not just a company; we're a community of problem-solvers dedicated to improving the lives of fellow software engineers. Our commitment is simple - finding the right fit for our team and cultivating a desire to make things better. If you're a cloud professional intrigued by our problem space and eager to make a difference, you've come to the right place. Join us, and let's solve problems together!

• Establish and maintain technical excellence within the data engineering team • Design and implement robust data solutions aligning with business objectives • Drive data-driven initiatives and ensure successful delivery • Lead by example, combining strong technical execution with mentorship • Engage with stakeholders to understand data needs and technical constraints • Implement with a DataOps mindset, building reliable and efficient data pipelines • Mentor and develop data engineers, contributing to knowledge sharing and thought leadership

• Collaborate with Colleagues – Work closely with colleagues to understand customers' business objectives and technical challenges, contributing to the design and development of effective GenAI solutions tailored to client needs. • Apply GenAI Principles – Utilize modern tools and frameworks like LangGraph, to build scalable, reliable, and maintainable Compound AI systems. • Leverage your understanding of AI fundamentals to ensure every project meets rigorous industry and ethical standards. • Adapt to the latest Technologies & Patterns – continue to research, learn, and stay abreast of the most recent state of the art for AI application development. • Promote Knowledge Sharing –Bolster our culture of continuous learning by sharing knowledge about AI engineering best practices through blog posts, articles, and internal talks.

• Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities • Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy • Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed • Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture