Security Consultant (Detection Engineer) - Contract - Remote

Job Title

Security Architect – Consultant (Detection Engineer)

Location

Remote

Job Description

Sunshine Enterprise USA is retained by our valued client to search and recruit for the following executive opening:

Security Architect – Consultant (Detection Engineer) Location: Remote Interview Process: 1 round, Virtual/Online - potential for a 2nd round onsite as needed Duration: 12 Months Employment Type: Contract Experience Required: 08+ Years Candidate location: No SC residency required. Open to nationwide candidates. (Candidates with the ability to work onsite when needed will be given preference.) Project Scope: Seeking an experienced Detection Engineer / Security Architect Consultant to support enterprise security monitoring, threat detection, and detection engineering initiatives. The ideal candidate will be responsible for developing, tuning, and maintaining security detections, identifying monitoring gaps, and enhancing overall threat visibility across a large-scale security environment.

Key Responsibilities

• Review, analyze, and tune existing SIEM detection rules.
• Perform detection coverage gap assessments and identify areas for improvement.
• Design, develop, and implement new detection rules and monitoring solutions.
• Monitor threat intelligence sources and translate emerging threats into actionable detections.
• Collaborate with SOC Analysts and Threat Hunters to improve detection capabilities.
• Develop and maintain documentation, runbooks, workflows, and troubleshooting guides.
• Support SOAR integrations and automation initiatives.
• Coordinate with security engineering teams, SOC personnel, and stakeholders.
• Participate in continuous improvement efforts to strengthen enterprise security monitoring.

Required Skills & Experience

• 5+ years of experience supporting large-scale IT environments and/or system deployments.
• Strong experience with detection engineering, threat detection development, and tuning.
• 5+ years of scripting and automation experience using: Python, PowerShell, Bash, similar scripting languages.
• Experience with dashboard development and reporting.
• Strong understanding of: Sigma, YARA, other industry-standard detection languages.
• Familiarity with the MITRE ATT&CK Framework.
• Experience documenting processes, procedures, and operational workflows.

Preferred Skills

• Experience with Palo Alto Cortex XSIAM.
• Strong knowledge of Windows and Linux artifacts.
• Experience working in multi-tenant security environments.
• Experience supporting enterprise or multi-agency security programs.
• Strong customer-facing communication and stakeholder engagement skills.

Education

Bachelor's Degree in Information Technology, Information Security, or related field. Eight years of relevant experience may be substituted for the degree requirement.

Certification

CISSP, CISA, CEH, OSCP, GPEN, Vendor-specific Detection Engineering Certifications, Other advanced cybersecurity certifications

SUNSHINE ENTERPRISE USA LLC is an Equal Opportunity Employer and does not discriminate on the basis of race or ethnicity, religion, sex, national origin, age, veteran disability or genetic information or any other reason prohibited by law in employment.