Jobs

Be a part of it. Join the #AccelFamily

Threat Detection Engineer

Forescout

Forescout

Other Engineering
Pune, Maharashtra, India
Posted on Tuesday, May 21, 2024

What We Do
Managing cyber risk, together – As the world is becoming more and more connected so is the need for Forescout’s solutions. Forescout is at the forefront of one of the largest needs in the security space. Forescout delivers automated cybersecurity across the digital terrain, maintaining continuous alignment of customers’ security frameworks with their digital realities, including all asset types – IT, IoT, OT, IoMT.
Our team is looking for individuals who have positive energy, an entrepreneurial spirt, and the drive to partner with our committed team to sell the best technology and drive team success!
What You Will Do
We are currently seeking an experienced Threat Detection Engineer to join our growing data analytics team. As a member of our data analytics team, you will work with agile continuous delivery team collaborating with threat researchers, threat detection engineers, senior data scientists and architects to deliver product capabilities and features. You would be developing ETL pipeline and performing exploratory data analysis on terabytes of security data every day for onboarding the data. You would be working on data throughout its lifecycle - acquisition, exploration, data cleaning, integration, analysis, interpretation and visualization.
Responsibilities:
  • Develop rule-based detection algorithms in Python.
  • Work with the detections engineering team to transform attacker TTPs into viable, low false-positive behavioral and signature detections using Python programming.
  • Set up testing environments and conduct data analytics, data cleansing, and testing.
  • Continuously evaluate security monitoring contents on XDR platform.
  • Identify gaps in existing security capabilities.
  • Work with SOC team to automate the detection of new threats.
  • Create use-case documents for detected threats.
  • Work with the development teams to design and support our security platform and services.
  • Work with global threat detection and analytics engineering team, creating detection model in XDR.
  • Perform exploratory data analysis on the processed dataset using Google Cloud platform Data analytic tools.
  • Collaborate with development, operation and field engineering team to enable successful Threat detection in XDR.
What You Will Bring
  • At least 3+ years of recent hands-on professional experience working as a Threat detection engineer or threat researcher.
  • Knowledge and insight into various cyber-attack lifecycle models.
  • Must Have -Python programming/scripting experience
  • In-depth knowledge of security logging for Linux, Windows, Mac OS X, or Active Directory.
  • Experience with web services, and cloud technologies, including Google Cloud Platform (GCP), AWS, Azure).
  • Experience in Elasticsearch, Kibana, and GCP is preferred.
  • Proficiency in building detection algorithms and utilizing logs and events to detect malicious activity with high fidelity from a broad set of detection use cases.
  • Proficiency in, and knowledge of, TTPs related to a threat actor or APT group.
  • Expertise in tools and techniques for analysing large datasets.
  • Work with the SOC team and customer to transform attacker TTPs into viable, low false-positive behavioural and signature detections using Python programming.
  • Strong analytical skills with the ability to collect, organize, analyze, and disseminate large amounts of information with attention to detail and accuracy.
  • Strong skills working with remote teams in different time zones.
Good to have skills:
  • Development experience on cloud services - AWS, Google, Azure.
  • Experience with git, confluence and JIRA.
  • Experience with the Elastic search/Splunk stack.
  • Experience in cybersecurity applications development or with cybersecurity in general.
What Forescout Offers You
Managing cyber risk, together – We are led by a visionary leadership team who encourages professional growth and development. We promote a diverse and inclusive culture providing for a collaborative and innovative environment where our team can make an impact on worldwide security while working on technology which is at the forefront of the industry. We are also proud of our competitive compensation and benefits offered. If you have a strong work ethic, are visible and lean in, you will be recognised. We are in growth mode and there is a ton of opportunity at Forescout. Apply now to find out more!
More About Forescout
Forescout Technologies, Inc. delivers automated cybersecurity across the digital terrain, maintaining continuous alignment of customers’ security frameworks with their digital realities, including all asset types – IT, OT, IoT, IoMT. The Forescout Continuum Platform provides complete asset visibility, continuous compliance, network segmentation and a strong foundation for Zero Trust. For more than 20 years, Fortune 100 organisations and government agencies have trusted Forescout to provide automated cybersecurity at scale. Forescout arms customers with data-powered intelligence to accurately detect risks and quickly remediate cyberthreats without disruption of critical business assets. Learn more at www.Forescout.com.
Our Mission
To continuously identify, protect, and ensure the compliance of all cyber assets across the modern organisation.
Our Vision
A world where every cyber asset is seen, secure and compliant.
Our Cultural Values
  • One Team – We all work together, and we all win together.
  • Cyber Obsessed – We are curious about technology, innovative and passionate about solving problems.
  • Customer Driven – We listen, we learn, and we make it right.
  • Relentless– We're smart, determined, and find a way. We figure stuff out.
  • Collaborative, without Ego – No one succeeds alone. We strive to be the humble person that people want to work with.
Our DEI Statement
At Forescout, we are committed to fostering a diverse, equitable, and inclusive workplace. We believe that diversity of background, experiences, and perspectives leads to innovation, creativity, and better decision-making. We strive to create an environment where all team members feel valued, respected, and empowered. We actively promote equal opportunities and fair treatment for all individuals, regardless of their race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic protected by law. By embracing Diversity, Equity, and Inclusion, we aspire to build a successful culture where we work together and win together as One Team.
Thank you for taking the time to learn more about us.
If this opportunity intrigues you, we would love for you to apply!
NOTE TO EMPLOYMENT AGENCIES: We value the partnerships we have built with our preferred vendors. Forescout does not accept unsolicited resumes from employment agencies. All resumes submitted by employment agencies directly to any Forescout employee or hiring manager in any form without a signed Employment Placement Agreement on file and search engagement for that position will be deemed unsolicited in nature. No fee will be paid in the event.
#LI-VS1

Forescout Technologies is proud to be an Equal Employment Opportunity Employer. We value and embrace diversity, equality, inclusion, and collaboration at the core of our “One Team” philosophy. We do not discriminate based on race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.