Threat Detection Engineer /XDR/ / Pharma /100/ remote/

We are looking for a Threat Detection Engineer to support the cybersecurity operations of a global pharmaceutical company. In this role, you will design, implement, and optimize detection mechanisms that proactively identify malicious activity across on-premise, cloud, and hybrid environments. You will play a key role in strengthening the organization’s security posture by leveraging advanced detection technologies, threat intelligence, and cross-team collaboration. This is an opportunity to work alongside Threat Intelligence, Security Operations, and Incident Response teams to stay ahead of an ever-evolving threat landscape. TASKS & RESPONSIBILITIES :

• Develop and maintain detection rules for Microsoft XDR and other detection platforms.
• Continuously monitor and assess the evolving threat landscape to update detection logic.
• Research and analyze emerging threats, TTPs, and attacker behaviors to improve detection capabilities.
• Build and refine automated workflows and integrations using scripting languages and APIs.
• Collaborate with Threat Intelligence, Incident Response, and other security stakeholders to ensure aligned and effective detection coverage.
• Support tuning and optimization efforts to enhance detection accuracy and minimize false positives.
• Conduct log analysis, endpoint activity reviews, and packet inspection to identify and validate suspicious behaviors. SKILLS : Minimum of 3-5 years in cybersecurity roles, such as Threat Hunter or Detection Engineer:
• Threat Detection Expertise:
• Experience with endpoint detection and response (EDR) solutions (e.g., CrowdStrike, FortiEDR, Defender for Endpoint).
• Familiarity with behavioral analytics and anomaly detection techniques.
• Threat Intelligence and Analysis:
• Understanding of threat intelligence sources (e.g., MITRE ATT&CK, D3FEND) and their application in detection strategies.
• Ability to research and adapt to emerging threats and attack methodologies.
• Programming and Automation:
• Scripting skills in Python, PowerShell, or Bash for automating security tasks.
• Experience developing integrations and automated workflows using APIs.
• Cloud and Network Security:
• Hands-on experience with cloud security tools (e.g., AWS GuardDuty, Azure Security Center).
• In-depth knowledge of IP networks, firewalls, intrusion detection/prevention systems (IDS/IPS), and packet analysis.
• Operating Systems:
• Strong knowledge of Linux and Windows internals, including log analysis and common attack vectors.
• Tool Proficiency:
• Familiarity with open-source tools like Zeek, Falco, Wireshark, and OSQuery.
• Knowledge of malware analysis tools and techniques.
• Fluent English. SCHEDULE :
• 08/09h -17/18h from Monday to Friday (flexible)
• 100% remote (your presence in the client's offices will be required once per month) CONDITIONS :
• Salary package based on your profile. We will discuss it on our first call.
• Permanent Contract
• Ticket restaurant included in-office hours
• Flexible Retribution Program (medical insurance, public transport ticket and childcare check)
• Discounts on gym network (Wellhub)
• Learning & Development
• Friend Referral Program Our goal is that you are well in every way! Original job Threat Detection Engineer /XDR/ / Pharma /100/ remote/ posted on GrabJobs ©. To flag any issues with this job please use the Report Job button on GrabJobs. Apply tot his job Apply tot his job

Apply tot his job Apply To this Job