ZipRecruiter

Log In

1

Detection Engineer Jobs (NOW HIRING)

Instacart

Senior Detection Engineer

$230K - $242K/yr

Overview Instacarts Detection Engineering team sits at the core of our Security organization, building and operating the systems that identify, surface, and respond to threats across one of North ...

Genius Road, LLC

Senior Detection Engineer

San Antonio, TX · On-site

$95K - $130K/yr

Senior Detection Engineer Contract Length: 12+ months Location: Austin or San Antonio, Texas (Hybrid) Behind every clean dashboard and every quiet shift is an engineer who built the system that made ...

New

Whoop

Security Detection Engineer

Boston, MA · On-site

WHOOP is seeking a Security Detection Engineer to serve as a key technical contributor within our Information Security team, reporting to the Information Security Manager. In this role, you will ...

Western Midstream

Leak Detection Engineer

The Woodlands, TX · On-site

$77K - $98K/yr

The Leak Detection Engineer will be responsible for the management, implementation, and continuous improvement of the company's Leak Detection Program in compliance with DOT PHMSA regulations (49 CFR ...

Whoop

Security Detection Engineer

Boston, MA · On-site

WHOOP is seeking a Security Detection Engineer to serve as a key technical contributor within our Information Security team, reporting to the Information Security Manager. In this role, you will ...

Whoop

Security Detection Engineer

Boston, MA

WHOOP is seeking a Security Detection Engineer to serve as a key technical contributor within our Information Security team, reporting to the Information Security Manager. In this role, you will ...

BreakPoint Labs

Detection Engineer (Cloud)

Charleston, SC · On-site

$120K - $130K/yr

The Detection Engineer collaborates with Defensive Cyber Operations (DCO) Watch Analysts and other teams to ensure timely and effective threat detection, adhering to CJCSM 6510.01B reporting ...

WHOOP

Security Detection Engineer

Boston, MA · On-site

WHOOP is seeking a Security Detection Engineer to serve as a key technical contributor within our Information Security team, reporting to the Information Security Manager. In this role, you will ...

ActiveCampaign

Senior Detection Engineer

$126K - $154K/yr

Collaborate cross-functionally with DevOps and Security Engineering teams to adapt detection logic to infrastructure changes before security blind spots can emerge. * Leverage AI and LLMs as force ...

ActiveCampaign

Senior Detection Engineer

Charleston, WV · Remote

$107K - $146K/yr

As our next Senior Detection Engineer , you won't just be monitoring dashboards--you'll be at the forefront of building our security operations as code. You will lead the charge in architecting ...

Fluidstack

Senior Detection Engineer

San Francisco, CA · On-site

$230K - $310K/yr

Lead detection engineering for Fluidstack's IT surface, including cross-domain detections where IT bridges OT or physical surfaces. * Author and tune production detections as code, with peer review ...

JLL

Senior Threat Detection Engineer

New York, NY

$114K - $157K/yr

Detection Engineering: Design, implement, and tune high-fidelity detection rules across SIEM, EDR/XDR, and cloud-native SaaS platforms. * Data Pipeline Management: Work with centralized logging, data ...

HGA

Leak Detection Engineer

Houston, TX · On-site

HGA is seeking a Leak Detection Engineer to support a client with operations in Houston, TX. This role is responsible for performing hydraulic analysis, real-time transient modeling, analyzing alarms ...

next page

Showing results 1-20

All JobsDetection Engineer Jobs

Detection Engineer information

See salary details

$11K

$156.4K

$192.5K

How much do detection engineer jobs pay per year?

As of Jun 26, 2026, the average yearly pay for detection engineer in the United States is $156,399.00, according to ZipRecruiter salary data. Most workers in this role earn between $143,000.00 and $172,500.00 per year, depending on experience, location, and employer.

What does a Detection Engineer do?

A Detection Engineer is responsible for identifying, analyzing, and mitigating security threats by developing detection rules, monitoring security systems, and responding to potential incidents. They work with security tools like SIEMs, EDRs, and IDS/IPS to detect malicious activity and improve threat detection capabilities. Additionally, they collaborate with security teams to enhance defensive strategies and automate detection processes.

What kind of projects or tasks does a Detection Engineer typically work on?

As a Detection Engineer, you can expect to work on designing, implementing, and refining security detection strategies to identify potential threats and vulnerabilities in company systems. Daily responsibilities often include developing detection logic, analyzing security alerts, conducting threat hunting exercises, and collaborating with incident response teams. You may also work closely with other cybersecurity professionals to evaluate the effectiveness of existing security measures and recommend improvements. This dynamic environment offers opportunities to work on complex technical challenges while directly contributing to the organization’s overall security posture.

What are the key skills and qualifications needed to thrive in the Detection Engineer position, and why are they important?

To thrive as a Detection Engineer, you need strong analytical skills, a solid understanding of cybersecurity principles, and experience with threat detection and response, often supported by a degree in computer science or a related field. Proficiency with security information and event management (SIEM) tools, intrusion detection/prevention systems, and certifications like GIAC or CISSP are commonly required. Attention to detail, proactive problem-solving abilities, and effective communication enhance effectiveness in this role. These skills are crucial as Detection Engineers must accurately identify security threats, collaborate with teams, and minimize potential risks to the organization.

More about Detection Engineer jobs
What cities are hiring for Detection Engineer jobs? Cities with the most Detection Engineer job openings:
What are the most commonly searched types of Detection Engineer jobs? The most popular types of Detection Engineer jobs are:
What states have the most Detection Engineer jobs? States with the most job openings for Detection Engineer jobs include:
What job categories do people searching Detection Engineer jobs look for? The top searched job categories for Detection Engineer jobs are:
Detection Engineer jobs near you
Infographic showing various Detection Engineer job openings in the United States as of June 2026, with employment types broken down into 92% Full Time, and 8% Contract. Highlights an 100% In-person job distribution, with an average salary of $156,399 per year, or $75.2 per hour.
Detection Engineer (Elastic)

Detection Engineer (Elastic)

BreakPoint Labs

Charleston, SC • On-site

$120K - $130K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 22 days ago

Job description

BreakPoint Labs is seeking a Detection Engineer with an expertise in Elastic to design, develop, and implement detection mechanisms to identify cyber threats within a Cybersecurity Service Provider (CSSP) environment. The candidate will focus on creating and managing IDS/IPS signatures, log correlation rules, and other detection tools based on indicator lifecycle analysis. The Detection Engineer collaborates with Defensive Cyber Operations (DCO) Watch Analysts and other teams to ensure timely and effective threat detection, adhering to CJCSM 6510.01B reporting requirements and supporting the CSSP’s mission to protect data across a wide spectrum of sources and locations.

Responsibilities include:

  • Develop, implement, and maintain custom, high-fidelity detection rules and logic in the Elastic Security platform specifically targeting adversary TTPs mapped to the MITRE ATT&CK® framework.
  • Develop and prioritize risk-based alerting mechanisms to focus detection efforts on high-impact threats, aligning with organizational risk assessments.
  • Analyze threat intelligence to create and refine detection mechanisms tailored to the customer’s environment.
  • Validate and test detection rules to ensure accuracy, minimize false positive and benign positive matches, and enhance threat identification capabilities.
  • Collaborate with DCO Watch Analysts to integrate detection mechanisms into monitoring and incident response workflows.
  • Maintain and update detection tools and signatures in response to evolving threats, ensuring compliance with CJCSM 6510.01B and other applicable directives.
  • Compile and maintain internal standard operating procedure (SOP) documentation for detection creation and implementation processes.
  • Coordinate with reporting agencies and subscriber sites to align detection strategies with operational needs and threat intelligence.
  • Participate in program reviews, product evaluations, and onsite certification evaluations to assess detection tool efficacy.
  • Overtime may be required to support detection implementation or incident response actions (Surge).
  • Up to 10% travel may be required.

Required Experience:

  • 5+ years of experience working in a CSSP, SOC, or similar environment.
  • 2+ years of experience with signature development, detection logic creation and optimization on multiple platforms.
  • Experience in threat detection engineering, threat hunting, or a related role with hands-on experience using the Elastic Stack, Kibana Query Language (KQL), Event Query Language (EQL), Elasticsearch Query Language (ES|QL) and/or Elastic Defend.
  • Experience with threat intelligence platforms and indicator management.
  • Proficient knowledge of detection creation and implementation processes.
  • Expertise in IDS/IPS solutions, including signature development and optimization.
  • Strong understanding of the indicator lifecycle, including initial discovery, development, operational maturity, and long-term sustainment.
  • Effective verbal and written communication skills.
  • Ability to solve complex problems independently.
  • Preferred certifications: Elastic Certified Analyst; Elastic Certified SIEM Analyst, Elastic Certified Engineer.

Certifications Required: DoD 8570 IAT Level II and DoD 8140 CSSP-specific certification.

Security Clearance Required: DoD Secret Clearance.

Education Required: Bachelor’s Degree Area(s) of Studyof relevant discipline and 5 years of experience. OR, at least 8 years of experience working in a CSSP, SOC, or similar.

Company Description

BreakPoint Labs, a small business cybersecurity services firm, is dedicated to providing the methods and means for sustainable, measurable, and effective cybersecurity operations. Powered by highly motivated, experienced cybersecurity professionals with technical and scientific proficiency. We are known for developing and leveraging technology to enable a more secure cyberspace. With well-formed service delivery models in cybersecurity assessments, defensive cyber operations, research and development, and cybersecurity training, we are able to support a diverse customer base in addressing its most challenging problems in cyberspace.
We are constantly seeking enthusiastic cybersecurity professionals, either to exchange technical ideas and lessons learned or to potentially join our Team. Through an established corporate culture, we embrace a highly technical, [geeky] workforce passionate about developing and leveraging technology to secure cyberspace. We have recently merged with Valiant Solutions to make us stronger, and better than ever to provide our customers with outstanding services.