Colossus Technologies Group

www.colossustg.com

1 Job

14 Employees

About the Company

At Colossus Technologies Group, we provide top-tier cybersecurity and digital trust staffing, IT consulting, and project management solutions, including privacy, security, and GRC SaaS platform solution implementation. Our expertise ensures businesses have access to the right talent and strategies to safeguard their digital assets, optimize operations, minimize and govern digital risks and drive growth.

Listed Jobs

Company Name: Colossus Technologies Group
Job Title: Sr. Detection Engineer - Logflow - Security Lake
Job Description: **Job title** Sr. Detection Engineer – LogFlow (Security Lake) **Role Summary** Senior detection engineer focused on designing, implementing, and tuning detection logic within a large‑scale security log ingestion platform. Works at the intersection of raw telemetry processing and detection engineering, ensuring logs are normalized and enriched for high‑fidelity, low‑noise detections. **Expectations** - 5+ years in detection engineering, security analytics, or security data engineering. - Proven track record of writing, tuning, and managing detection rules directly on log data. - Deep knowledge of cloud, identity, infrastructure, and endpoint telemetry. - Ability to evaluate trade‑offs between raw and normalized logs. - Experience delivering detection solutions that scale in performance and cost. **Key Responsibilities** - Design and develop detection pipelines on top of LogFlow’s security telemetry streams. - Author detection rules and continuously tune them to balance signal quality against false positives. - Define and implement normalization and enrichment logic to convert inconsistent logs into detection‑ready formats. - Collaborate with ingestion, platform, and data‑engineering teams to improve log quality at the source. - Influence data storage, query semantics, and exposure methods for detection use cases. - Perform performance, cost, and noise analysis for detection workloads. - Maintain detection logic in version‑controlled, detection‑as‑code repositories. **Required Skills** - Detection engineering on log‑based security data. - Strong understanding of security telemetry (cloud audit logs, identity, infra logs, EDR, network logs). - Experience with raw vs. normalized log trade‑offs and data quality improvements. - Scripting and query languages (Python, SQL‑like). - Familiarity with SIEM concepts, security lakes, or custom detection platforms. - Experience with log ingestion pipelines, shippers, or collectors. - Ability to reason about scale, performance, and false‑positive optimization. - Version control and detection‑as‑code practices. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Information Security, or related technical field (or equivalent experience). - Certifications are not required; demonstrable experience is preferred.