Threat Detection Engineer

Overview

Advanced Threat Detection Engineering

• Build high-fidelity correlation rules and behavioral detections within the COGNNA security platforms.
• Translate adversary TTPs (MITRE ATT&CK), threat intel, and vulnerability data into actionable logic.
• Identify detection gaps and introduce new data sources to cover evolving threat landscapes.
• Automate detection testing and maintain detection quality over time.

Platform Engineering & Optimization

• Lead architecture and optimization of XDR, SIEM, and SOC tech stacks for scale and resilience.
• Streamline log ingestion pipelines from parsing to normalization and enrichment.
• Build scripts and automations (Python, PowerShell) to enhance SOC efficiency.
• Integrate tools across the SOC stack to enable seamless workflows and response.

Threat Hunting & Incident Response

• Collaborate with intel and IR teams to enrich detection use cases and support threat hunts.
• Provide Tier-3+ support for incident investigations and post-mortem analysis.

Mentorship & Soc Maturity

• Improve SOC playbooks, SOPs, and detection engineering workflows.
• Stay updated on global and regional threats and evolve detection accordingly.
• Ensure compliance alignment (e.g., NCA ECC, SAMA CSF).
• Impact that Matters
• Build products that shape the future of cybersecurity and protect organizations globally.

On-Site Collaboration

• Be at the heart of innovation in our Riyadh office, working side by side with passionate experts.

Continuous Growth

• Access to certifications, trainings, and opportunities to sharpen your expertise.

Ownership Mindset

• Benefit from our ESOP program and grow with COGNNA s success.
• Culture of Trust
• We empower talent, encourage ownership, and celebrate real outcomes.