Threat Detection Engineering Lead
Do you have a passion for hunting malicious activities in the background of business as usual and figuring out how to detect and respond to new threats?
Millennium SOC is going through a transformation; we are looking for an experienced Threat Detection Engineering Lead to drive our best-in-class posture and lead the Information Security Team in India. This is highly technical role, and a successful candidate would have demonstrated knowledge and experience in a range of technologies, both business and security as well as site leadership in a fast pace innovative organization.
Principal Responsibilities
* Leadership and Site Management: The ability to recruit and manage a team of information security and technology-focused engineering resources.
* Threat Hunting – The ability to leverage multiple data sources to identify modern evolving threats and develop new detection and response approaches.
* Detection Engineering – Creation and operation of high-fidelity detections mechanisms that drive efficient, effective and repeatable response.
* Playbook Creation – Own, operate and automate detection and response workflows, that enable the team to focus on strategic objectives.
* Lead Information Security response activities for the firm.
* Team Player – Ability to work across business and technology teams to deliver positive outcomes across the firm – on-site, regionally, and globally.
* Technical Prowess – Comfortable explaining complex technology and information security related concepts to a wide range of stakeholders.
* Security Ambassador - Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering stakeholder queries.
* Threat Intel - Actively monitor new and emerging security and privacy related technologies, trends, issues, and solutions and assess their applicability to Millennium key business initiatives and business strategies.
* Operational Excellence – Ensure Millennium Information Security capabilities remain fit for purpose and evolve to meet the changing threat landscape.
Qualifications/Skills Required
* Bachelor’s or Master’s degree in computer science or cyber security with strong IT background or equivalent demonstrable experience.
* 10 years’ experience working in a security engineering leadership role, financial industry experience preferred.
* Experience in creating detections in modern query languages (KQL, SQL, SPL).
* Possesses security certifications (Security+, OSCP, CISSP, CEH, GCIA, GCIH).
* Experience with modern security tooling across security domains; network, endpoint, data, identity, and cloud.
* Experience in standard enterprise technology stack, Active Directory, Entra, Group Policy, Intune, DNS, TCP/IP, PKI, Microsoft 365, Windows, Linux, MacOS, etc.
* Ability to handle sensitive and/or confidential materials with appropriate discretion.
* Required scripting, development and automation skills using PowerShell or Python and proficient development tools.
* Experience in OSINT, Threat hunting and analyzing malicious content; files, domains and URLs, emails and a broad understanding of threat actor tactics and tools.
* Ability to prioritize in a fast moving, high pressure, constantly changing environment
###
