1

Detection Engineer Jobs in Florida (NOW HIRING)

The Detection Engineer will leverage telemetry generated through malware analysis, vulnerability research, and proactive threat hunting to identify detection gaps and improve product coverage.

The Detection Engineer will leverage telemetry generated through malware analysis, vulnerability research, and proactive threat hunting to identify detection gaps and improve product coverage.

Security Detections Engineer The Security Detections Engineer is responsible for designing, building and continuously improving EA's detection and response capabilities across our global environment.

Tenex is seeking a highly motivated and skilled Threat Detection Engineer to join our growing Security Operations team. In this critical role, you will be responsible for proactively identifying and ...

Senior Technical Product Manager

Miami, FL · On-site

$121K - $159K/yr

Partner with detection engineering, endpoint agent, security research, platform, and data teams to identify detection gaps and prioritize improvements * Translate threat research, efficacy test ...

This role will bridge security operations, detection engineering, incident response, cloud/identity security, and production readiness. The ideal candidate is hands-on, adaptable, and comfortable ...

You will partner closely with detection engineering, security operations, and incident response teams in a cloud environment, with a primary focus on proactive detection development and signal ...

You will partner closely with detection engineering, security operations, and incident response teams in a cloud environment, with a primary focus on proactive detection development and signal ...

Lead a detection engineering function responsible for building and maintaining detection content and analytics across the enterprise. * Develop detection standards (naming, severity, testing criteria ...

You'll work closely with Threat Intelligence and Detection Engineering to continuously improve our defensive posture. This is a midlevel individual contributor role with a clear path toward ownership ...

Embedded Electronics Engineer

Tampa, FL · On-site

$135K - $145K/yr

Embedded Electronics Engineer Tampa, FL Company Overview Detect-ION is a deep-tech startup founded ... The Detect-ION team has a collective 75+ years of contract research and development experience, and ...

Embedded Electronics Engineer

Tampa, FL · On-site

$135K - $145K/yr

Embedded Electronics Engineer Tampa, FL Company Overview Detect-ION is a deep-tech startup founded ... The Detect-ION team has a collective 75+ years of contract research and development experience, and ...

next page

Showing results 1-20

Detection Engineer information

See Florida salary details

$8.8K

$124.6K

$153.3K

How much do detection engineer jobs pay per year?

As of Jul 15, 2026, the average yearly pay for detection engineer in Florida is $124,587.00, according to ZipRecruiter salary data. Most workers in this role earn between $113,913.00 and $137,412.00 per year, depending on experience, location, and employer.

What does a Detection Engineer do?

A Detection Engineer is responsible for identifying, analyzing, and mitigating security threats by developing detection rules, monitoring security systems, and responding to potential incidents. They work with security tools like SIEMs, EDRs, and IDS/IPS to detect malicious activity and improve threat detection capabilities. Additionally, they collaborate with security teams to enhance defensive strategies and automate detection processes.

What kind of projects or tasks does a Detection Engineer typically work on?

As a Detection Engineer, you can expect to work on designing, implementing, and refining security detection strategies to identify potential threats and vulnerabilities in company systems. Daily responsibilities often include developing detection logic, analyzing security alerts, conducting threat hunting exercises, and collaborating with incident response teams. You may also work closely with other cybersecurity professionals to evaluate the effectiveness of existing security measures and recommend improvements. This dynamic environment offers opportunities to work on complex technical challenges while directly contributing to the organization’s overall security posture.

What are the key skills and qualifications needed to thrive in the Detection Engineer position, and why are they important?

To thrive as a Detection Engineer, you need strong analytical skills, a solid understanding of cybersecurity principles, and experience with threat detection and response, often supported by a degree in computer science or a related field. Proficiency with security information and event management (SIEM) tools, intrusion detection/prevention systems, and certifications like GIAC or CISSP are commonly required. Attention to detail, proactive problem-solving abilities, and effective communication enhance effectiveness in this role. These skills are crucial as Detection Engineers must accurately identify security threats, collaborate with teams, and minimize potential risks to the organization.

What are the most commonly searched types of Detection Engineer jobs in Florida? The most popular types of Detection Engineer jobs in Florida are:
What cities in Florida are hiring for Detection Engineer jobs? Cities in Florida with the most Detection Engineer job openings:
Infographic showing various Detection Engineer job openings in Florida as of July 2026, with employment types broken down into 89% Full Time, 8% Part Time, 1% Temporary, and 2% Contract. Highlights an 91% Physical, 2% Hybrid, and 7% Remote job distribution, with an average salary of $124,587 per year, or $59.9 per hour.
Detection Engineer

Detection Engineer

ThreatLocker

Orlando, FL • On-site

Other

Posted 5 days ago


ThreatLocker rating

7.0

Company rating: 7.0 out of 10

Based on 6 frontline employees who took The Breakroom Quiz

164th of 209 rated software companies


Job description

COMPANY OVERVIEW

ThreatLocker is a leader in endpoint protection technologies, providing enterprise-level cybersecurity tools to improve the security of servers and endpoints. The ThreatLocker platform with Application Allowlisting, Ringfencing, Storage Control, Elevation Control, Endpoint Network Control, Configuration Management, and Operational Alert solutions are leading the cybersecurity market toward a more secure approach of blocking the exploits of application vulnerabilities.

JOB OVERVIEW

ThreatLocker is seeking a Detection Engineer to drive the development and continuous improvement of detection content within the ThreatLocker Detect platform. This role is responsible for creating and maintaining detection rules used by our Endpoint Detection and Response (EDR) and Identity Threat Detection and Response (ITDR) products while ensuring alignment with the MITRE ATT&CK Framework.

The Detection Engineer will leverage telemetry generated through malware analysis, vulnerability research, and proactive threat hunting to identify detection gaps and improve product coverage. Working closely with Threat Analysts and Security Researchers, this individual will develop high-quality detection logic that identifies evolving attacker techniques while minimizing false positives.

As a Detection Engineer, you are responsible for, but not limited to:

  • Develop, test, and maintain detection content for ThreatLocker's Endpoint Detection and Identity Threat Detection platforms.
  • Create and maintain custom Sigma, YARA, and Snort detection rules.
  • Map detections to the MITRE ATT&CK Framework and continuously improve coverage.
  • Analyze Windows telemetry and forensic artifacts to identify detection opportunities.
  • Research attacker techniques including persistence, privilege escalation, defense evasion, and post-exploitation activity.
  • Collaborate with Threat Analysts and Security Researchers to identify and remediate detection gaps.
  • Validate detection logic through threat hunting, malware analysis, and adversary emulation.
  • Tune detection content to improve accuracy while reducing false positives.
  • Document detection methodologies and technical findings for internal teams.
  • Stay current on emerging threats, attack techniques, and industry best practices.
  • The role will be based in Orlando, FL and is an in-office position.

REQUIRED QUALIFICATIONS

  • 3+ years of experience in Information Security.
  • 2+ years of experience working with Endpoint Detection and Response (EDR) or Identity Threat Detection and Response (ITDR) technologies within an enterprise environment.
  • Experience developing detection content is strongly preferred.
  • Strong understanding of the MITRE ATT&CK Framework and its application within enterprise security.
  • Experience creating custom Sigma, YARA, and Snort detection rules.
  • Strong knowledge of Windows operating systems and Windows forensic artifacts.
  • Experience with Windows persistence mechanisms, privilege escalation, defense evasion, and parent-child process relationships.
  • Familiarity with malware analysis, threat hunting, and vulnerability research.
  • Familiarity with adversary emulation and post-exploitation frameworks.
  • Strong analytical, troubleshooting, and critical thinking skills.
  • Excellent written and verbal communication skills with the ability to explain technical concepts to non-technical stakeholders.
  • Ability to work independently while collaborating effectively within a team environment.
  • Relevant certifications such as OSCP, GCFA, GCIH, GCIA, GCDA, GCTD, or GISP are a plus.

WORKING CONDITIONS

The duties described below are representative of those encountered while performing the essential functions of this position. If necessary, reasonable accommodation may be requested and will be evaluated for its relationship to the essential functions that must be performed.

  • Job will generally be performed in an office environment but may require travel to visit company offices and/or property locations.
  • While performing duties of this job, would occasionally require standing, walking, sitting, reaching with hands and arms, climbing or balancing, stooping or kneeling, talking and hearing, and using fingers and hands to feel objects and tools.
  • Must occasionally lift and/or move up to 25 pounds.
  • Specific vision abilities required include close vision, distance vision, depth perception, and the ability to adjust focus.

A background check and drug/substance screening are required after a conditional offer. Employment will proceed only upon receiving clear results from both.

ThreatLocker also conducts randomized drug and substance testing approximately every 60 days, in line with the same screening standards.


What ThreatLocker employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom