Lead Threat Detection Engineer

Threat Detection Engineer

This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Wilmington, DE Tech Hub.

Overview

Responsible for designing, developing, and enhancing threat detection capabilities across the organization's detection platforms. The primary focus will be the creation and optimization of threat detection use cases, leveraging advanced tools and techniques to identify and mitigate cyber threats in real time. Collaborate with cross-functional teams to ensure that the threat detection solutions align with the organization's security strategy and address emerging threats effectively. Completes day-to-day support activities and special projects.

Primary Responsibilities

• Design and implement advanced detection architectures across the organization's security landscape, utilizing SIEM, EDR, NDR, and cloud security platforms. Ensure the detection infrastructure scales to handle the growing complexity and volume of enterprise threats.
• Lead the development and refinement of complex, high-fidelity detection use cases, custom correlation rules, and detection models tailored to the organization's unique risk profile and threat landscape.
• Architect and implement advanced methods for the integration and fusion of internal, external, and commercial threat intelligence sources. Build and refine correlation techniques to identify sophisticated, multi-vector attacks, leveraging threat intelligence and behavioral analysis.
• Continuously enhance and optimize detection techniques, reducing alert fatigue and improving detection accuracy by applying advanced techniques like statistical analysis, machine learning, and automation. Implement continuous feedback loops to refine use cases and reduce false positives.
• Develop and implement automation and orchestration for complex systems to streamline security operations and response activities.
• Lead collaboration efforts with Cybersecurity and Technology teams to effectively implement and maintain security solutions for the organization.
• Lead improvement initiatives within Cybersecurity team, implementing best practices and optimizing processes to enhance security capabilities.
• Actively partner with vendor to optimize security products and / or drive resolution of complex support issues.
• Understand and adhere to the Company's risk and regulatory standards, policies, and controls in accordance with the Company's Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
• Complete other related duties as assigned.

Scope of Responsibilities

Manager Responsibilities

No supervisory responsibilities.

Education and Experience Required

Education and Experience Preferred

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $121,698.75 - $202,831.26 (USD). The successful candidate's particular combination of knowledge, skills, and experience will inform their specific compensation.

Location

Wilmington, Delaware, United States of America