Detection Engineer

Vectra is the leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises.

The Vectra AI Platform delivers integrated signal across public cloud, SaaS, identity, and data center networks in a single platform. Powered by patented Attack Signal Intelligence, it empowers security teams to rapidly prioritize, investigate and respond to the most advanced cyber-attacks. With 35 patents in AI-driven threat detection and the most vendor references in MITRE D3FEND, organizations worldwide rely on the Vectra AI to move at the speed and scale of hybrid attackers. For more information, visit

We are seeking an experienced Threat Detection Engineer to extend Vectra's detection capabilities in partnership with Data Scientists and Security Researchers who are developing our AI-driven Attack Signal.

Vectra's Attack Signal Production Group is responsible for building Vectra's core threat detection and prioritization technology, leveraging AI and other methods to alert customers to critical threats in their network and cloud environments. Threat Detection Engineers work closely with Data Scientists who are developing AI models, and Security Researchers who are researching the threat landscape and assisting modeling efforts. Detection Engineers focused on Network attack behaviors complement Vectra's coverage by building Suricata signatures, specifying detection logic in python, and utilizing other available methods.

Responsibilities and Accountabilities:

• Analyze network traffic to identify and document threat patterns.
• Develop and maintain network-based security signatures in Suricata.
• Use offensive security tools and techniques to simulate attacks and generate sample network traffic.
• Collaborate with data scientists and security researchers to support detection efforts and improve detection accuracy.
• Continuously monitor and assess the effectiveness of network detections, making adjustments as needed.
• Contribute to threat hunting efforts by identifying new tactics, techniques, and procedures (TTPs) used by attackers.
• Participate in incident response activities as required.

Attitudes and Behaviors:

• Focus on impact and results; work on the right things and get them done
• Drive and resourcefulness to persevere and overcome obstacles achieving challenging goals
• Track record of successfully solving complex and ambiguous problems
• High integrity and ability to positively collaborate with others

Qualifications and Experience

• 5 years of cybersecurity experience (preferably focused on threat detection and response)
• Expertise in writing signatures with Suricata
• Excellent people, technical and communication skills, and the ability to work collaboratively in a team environment.
• Advanced knowledge of common operating systems, services, networking protocols, logging, cloud and SaaS environments
• Knowledge of attacker techniques and tools (e.g., Metasploit, Cobalt Strike), and prior operational experience leveraging threat intelligence to detect and respond to adversaries
• Familiarity with data utilized by detection technology, for example PCAPs, flow logs, cloud logs, etc.
• Proficiency with related languages and frameworks, e.g. bash, python, Sigma, YARA-L, Linux/Unix, Wireshark, etc.
• Scripting, software development, engineering, and/or devops experience; experience with a source control system, preferably Git
• Optional certifications - OSCP, GCIA, GCDA, GSEC

Vectra provides a comprehensive total rewards package that supports the financial, physical, mental and overall health of our employees and their families. Compensation includes competitive base pay, incentive plan eligibility, and participation in the employee equity plan (stock options). Specific benefits offered varies by location, but commonly include health care insurance, income protection / life insurance, access to retirement savings plans, behavioral & emotional wellness services, generous time away from work, and a comprehensive employee recognition program.

Vectra is committed to creating a diverse environment and is proud to be an equal opportunity employer.

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.