Technical Consultant in Threat Detection Content & Administration

Overview

CTG is seeking to fill a Technical Consultant in Threat Detection Content & Administration position for our client.

Location: Dallas, TX
Duration: 3 months

• Develop and maintain SIEM/SOAR threat detection content, rules, tuning, and run books.

• Administer SIEM, SOAR, EDR, AV, IDS/IPS, and Cloud security tools.

• Analyze system/network activity, IOCs, and attacker behaviors to identify threats.

• Apply MITRE ATT&CK and NIST CSF for classification, attribution, and risk assessment.

• Ensure environments are patched, updated, and optimized.

• Produce policies, documentation, and operational security recommendations.

• Support a 24/7 SOC, including covering shifts as needed.

• Knowledge of DNP3, Modbus, IEC 104.

• Experience with SIEM, SOAR, IDS/IIDS, EDR, AV.

• Strong analytical and communication abilities.

• Ability to work effectively in a shift-based SOC.

• 2–4 years in cybersecurity.

• 1–2 years in OT/SCADA preferred.

• Experience creating/tuning detection content and analyzing security events.

• Certifications (Network+, Security+, CySA+) a plus.

• High School Diploma required; Bachelor’s in IT/CS/Cybersecurity preferred.

Excellent verbal and written English communication skills and the ability to interact professionally with a diverse group are required.

CTG does not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services for this role.

To be considered, please apply directly to this requisition using the link provided. Kindly forward this to any other interested parties. Thank you!