Detection Engineer
Job Description
AIG, a global leader in insurance, is seeking a Detection Engineer to join their Information Technology team. This role combines cybersecurity expertise with software engineering, focusing on building and maintaining detection systems to protect AIG's global infrastructure. The position offers an opportunity to shape a mature Detection-as-Code program from the ground up, working with teams worldwide on incident response and risk management.
The ideal candidate will bring 4+ years of relevant experience and strong technical skills in Python, cloud technologies, and security tools. They'll be responsible for developing detection rules, implementing CI/CD pipelines, and translating threat intelligence into actionable security measures. The role requires both technical expertise and leadership abilities, as you'll be mentoring junior engineers and collaborating with various stakeholders.
AIG values in-person collaboration and offers a comprehensive benefits package through their Total Rewards Program. The company is committed to fostering an inclusive culture, supporting employee resource groups, and providing opportunities for professional growth. This role represents a chance to work at the intersection of technology and security while contributing to a Fortune 500 company's global risk management efforts.
The position is based in London and offers the opportunity to work with cutting-edge security tools and technologies while protecting one of the world's largest insurance organizations. AIG's commitment to innovation in risk management and security makes this an excellent opportunity for a security professional looking to make a significant impact in a global enterprise environment.
Responsibilities For Detection Engineer
- Develop, manage and version-control detection logic using Detection-as-Code principles
- Leverage and implement CI pipelines to validate and deploy detection rules
- Translate threat intelligence reports and attacker TTPs into detection rules
- Analyze logs and security telemetry from various sources and tools
- Continuously tune detections rules to maximize precision and efficacy
- Build and maintain automation scripts in Python, Bash and PowerShell
- Build and maintain detection and coverage metrics dashboards
- Train and mentor Junior Detection Engineers
- Collaborate with IR teams as part of response and remediation efforts
Requirements For Detection Engineer
- 4+ years in Detection Engineering, Security Operations or Security Automation
- Knowledge of SIEM, EDR, cloud and network-based detection techniques
- Exposure to cloud-native logging and monitoring
- Experience with cloud-native security alerting
- Understanding of threat actor behaviors and MITRE ATT&CK
- Proficiency in script and automation (Python preferred)
- Experience with Git and CI/CD pipelines
- Familiarity with YAML/JSON-based rule definitions
- Ability to simulate basic adversary behavior through automated frameworks
Benefits For Detection Engineer
- Total Rewards Program
- Health benefits
- Wellbeing benefits
- Financial security benefits
- Professional development
- Volunteer Time Off
- Matching Grants Programs
Related Jobs
