Experience : 6+ years in security detection authoring / network threat detection.

Location : Bangalore (Hybrid / Onsite as applicable).

Required Skills & Experience :

- 6+ years of experience in security detection authoring, with strong expertise in :

a. Network-based detections such as NDR, IDS, and IPS signatures.

b. Design and development of anomaly-based and behavioral detections.

c. Tuning and optimization of detections to improve accuracy and reduce false positives.

- Deep understanding of networking fundamentals and protocols, including :

a. TCP/IP, DNS, HTTP, and related protocols.

b. Network authentication and directory protocols such as LDAP, NTLM, etc.

c. Hands-on experience with protocol analyzers and packet inspection.

d. Strong experience with Suricata/Snort rule authoring and network threat detection frameworks.-

e. Proven ability to research network threat vectors and develop high-quality security detections.

- Experience using :

a. MITRE ATT&CK framework.

b. PCAP analysis.

c. Threat intelligence feeds.

- Exposure to third-party firewalls, IDS/IPS, and network edge devices, including understanding their capabilities, configurations, and vulnerabilities (nice to have).

- Experience working in Managed Detection & Response (MDR) environments and learning multiple security technologies.

- Strong analytical and problem-solving skills, with the ability to help the team solve complex technical and security challenges.

- Solid understanding of networking, protocols, and cybersecurity fundamentals.