Threat Detection Engineer: MITRE-Driven, SOC-Centric

Maandag® Middle East is hiring a Detection Engineer to design and enhance advanced threat detection across cloud, network, and endpoint environments. The role focuses on building custom detection logic and translating MITRE ATT&CK techniques into actionable detections.

The ideal candidate should have strong experience with Microsoft Defender, CrowdStrike, and SentinelOne, as well as expertise in writing detection rules using KQL/SPL and Sigma. You will collaborate with SOC and Threat Intelligence teams to optimize detections and reduce false positives.