Home › Companies › Truezerotech › Security Monitoring Detection Engineer (R-00143)
Security Monitoring Detection Engineer (R-00143)
Truezerotech · 100% Remote · Remote · Active · Lever
Job facts
| Field | Value |
|---|---|
| Company | Truezerotech |
| Title | Security Monitoring Detection Engineer (R-00143) |
| Normalized title | - |
| Department / team | Security Resilience / Security Engineering Team |
| Location | United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Lever |
| Posted / first seen | 2026-04-17 / 2026-05-29 |
| Changed / last seen | 2026-05-29 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Truezerotech. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Lever. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| Department jobs | Active postings in Security Resilience. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Truezerotech |
| Source | fd7b3fad-f07f-4438-ad90-754976718dfe |
| ATS provider | Lever |
Description
True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories (“Prosperous and Thriving” ($5MM–$50MM in gross revenue) and “Mid-Atlantic Region” (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025, a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence.
We’re actively searching for talented and expereinced professionals who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills
Job Responsibilities
"Detection as Code" (DaC): Applying software engineering principles (version control, CI/CD, testing) to security rules.
Threat Mapping: Mapping detection strategies against frameworks such as MITRE ATT&CK to identify coverage gaps.
Log Analysis: Analyzing telemetry from endpoint, network, cloud, and identity systems to identify anomalous patterns.
Tuning and Optimization: Continuously tuning rules to reduce noise and enhance actionable alerts.
Detection Lifecycle Management: Designing, developing, testing, deploying, and maintaining rules to detect threats.
Job Qualifications
Technical Expertise: Strong proficiency in Python scripting, SQL, and regex, as well as experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel).
Behavioral Analysis: Understanding of attacker techniques, tactics, and procedures (TTPs).
Data Analysis: Ability to parse and analyze large-scale log data for anomalies.
Background: Often requires experience in SOC analysis, incident response, or threat hunting.
Full job record
| Job ID | 75bf5dd32ac608f9ce907f7f311a8edc262ecdff |
| Org ID | 7db049a1-c308-497e-8ef0-4ae8ac5e3083 |
| Source ID | fd7b3fad-f07f-4438-ad90-754976718dfe |
| Board ID | fd7b3fad-f07f-4438-ad90-754976718dfe |
| Provider | lever |
| Provider Job Key | 6d390f26-4e83-4389-b0bf-0ce30e94b6b7 |
| Title | Security Monitoring Detection Engineer (R-00143) |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | 100% Remote |
| Department | Security Resilience |
| Team | Security Engineering Team |
| Employment Type | Full-Time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | — |
| City | — |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://jobs.lever.co/truezerotech/6d390f26-4e83-4389-b0bf-0ce30e94b6b7 |
| Apply URL | https://jobs.lever.co/truezerotech/6d390f26-4e83-4389-b0bf-0ce30e94b6b7/apply |
| First Seen At | 2026-05-29 07:10:49Z |
| Last Seen At | 2026-06-06 07:57:40Z |
| Last Checked At | 2026-06-06 07:57:40Z |
| Last Changed At | 2026-05-29 07:10:49Z |
| Inactive At | — |
| Source Posted At | 2026-04-17 21:13:14Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=lever/board=truezerotech/date=2026-06-06/2026-06-06T07-57-39-812Z-1045bbe10c37aeac86194b1520ffe5fb98c894a8df85083f72f1b39f5b247cf1.json |
Event Fields
{
"content_hash": "d0db9e4df6292980319ebc8df0c83edd0654ed2180cbbc248f0933c66d3d001e",
"source_hash": "c6486c5a607a0c161de5ba12d6f1a6358c7813a5f46196824eec897bee441bbb",
"last_changed_at": "2026-05-29T07:10:49.241Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "100% Remote",
"city": null,
"region": null,
"country": "United States",
"is_remote": true,
"confidence": 0.9
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T07:57:40.707Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "100% Remote",
"city": null,
"region": null,
"country": "United States",
"is_remote": true,
"confidence": 0.9
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"lists": [
{
"text": "Job Responsibilities ",
"content": "<div>\n<div> </div>\n\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAMQAQ\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">\"Detection as Code\" (DaC):</strong> Applying software engineering principles (version control, CI/CD, testing) to security rules.</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAMQAg\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Threat Mapping:</strong> Mapping detection strategies against frameworks such as MITRE ATT&CK to identify coverage gaps.</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAMQAw\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Log Analysis:</strong> Analyzing telemetry from endpoint, network, cloud, and identity systems to identify anomalous patterns.</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAMQBA\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Tuning and Optimization:</strong> Continuously tuning rules to reduce noise and enhance actionable alerts.</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAMQBA\" data-processed=\"true\">\n<div><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Detection Lifecycle Management:</strong> Designing, developing, testing, deploying, and maintaining rules to detect threats.</span></div>\n</li>\n\n</div>"
},
{
"text": "Job Qualifications ",
"content": "<div>\n<div> </div>\n</div>\n<div>\n\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAUQAA\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Technical Expertise:</strong> Strong proficiency in Python scripting, SQL, and regex, as well as experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel).</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAUQAQ\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Behavioral Analysis:</strong> Understanding of attacker techniques, tactics, and procedures (TTPs).</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAUQAg\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Data Analysis:</strong> Ability to parse and analyze large-scale log data for anomalies.</span></li>\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAUQAw\" data-processed=\"true\"><span data-sfc-cp=\"\" data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\"><strong data-sfc-root=\"c\" data-sfc-cb=\"\" data-processed=\"true\">Background:</strong> Often requires experience in SOC analysis, incident response, or threat hunting.</span></li>\n\n</div>"
}
],
"country": "US",
"createdAt": 1776460394405,
"updatedAt": null,
"categories": {
"team": "Security Engineering Team",
"location": "100% Remote",
"commitment": "Full-Time",
"department": "Security Resilience",
"allLocations": [
"100% Remote"
]
},
"salaryRange": null,
"workplaceType": "remote"
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/75bf5dd32ac608f9ce907f7f311a8edc262ecdff?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/7db049a1-c308-497e-8ef0-4ae8ac5e3083JSONGET https://api.bluedoor.sh/job-postings/v1/sources/fd7b3fad-f07f-4438-ad90-754976718dfeJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/75bf5dd32ac608f9ce907f7f311a8edc262ecdff/eventsJSON