Why CC Pace? | CC Pace

Option 1: Create a New Profile

Cybersecurity Detection Engineer – AI-Driven Threats - Hybrid

Job Title
Cybersecurity Detection Engineer – AI-Driven Threats - Hybrid
Job ID
27776605
Location
Vienna, VA, 22180 
Other Location
Description

Cybersecurity Detection Engineer – AI-Driven Threats

Location: Vienna, VA, Winchester, VA, or Pensacola, FL

Role Overview

The Principal Cybersecurity Detection Engineer – AI-Driven Threats is a senior individual contributor responsible for advancing the effectiveness and maturity of the Cyber Security Operations Center (CSOC). This role designs, operationalizes, and scales high-confidence detection capabilities to address AI-enabled threats and emerging attack techniques.

This position combines deep, hands-on detection engineering expertise with applied knowledge of AI security and adversarial techniques. As a principal-level individual contributor, you will drive the practical application of AI and emerging technologies within security operations, ensuring measurable improvements in detection fidelity, incident response outcomes, and analyst efficiency.

Key Responsibilities

AI & Emerging Threat Detection

  • Serve as the senior technical subject matter expert for AI-focused threat detection within the CSOC
  • Design, develop, deploy, and maintain advanced detection content across SIEM and security platforms to identify AI-enabled and emerging attack techniques
  • Engineer high-confidence detections using complex query languages and techniques (e.g., SPL, KQL, regex, YARA, macros, lookups) across on-premises, hybrid, and cloud environments
  • Continuously evaluate detection coverage and fidelity, tuning or retiring content as adversary tactics, data sources, and operational needs evolve
  • Research emerging AI and advanced technology threats (e.g., prompt injection, model poisoning, adversarial AI, data exposure) and translate them into actionable detection strategies
  • Align detection use cases to industry frameworks such as MITRE ATT&CK, MITRE ATLAS, and NIST CSF
  • Partner with threat intelligence, detection engineering, threat hunting, red team, and architecture teams to proactively strengthen detection capabilities
  • Support proofs of concept and pilots that apply AI to detection engineering and SOC operations, ensuring solutions deliver measurable operational value
  • Mentor and guide senior detection engineers and analysts on AI threat concepts and advanced detection strategies
  • Communicate complex technical findings clearly to technical teams, leadership, and executive stakeholders

Required Qualifications

  • 7+ years of experience in cybersecurity operations, detection engineering, or SIEM engineering in a senior individual contributor role
  • Advanced expertise in detection engineering across the full content lifecycle (design, testing, deployment, tuning, and decommissioning)
  • Hands-on experience applying AI or machine learning capabilities within SOC or detection workflows
  • Familiarity with AI security frameworks (e.g., MITRE ATLAS, OWASP AI Security)
  • Advanced proficiency with SIEM query languages and multi-source telemetry across on-premises, cloud (IaaS/PaaS/SaaS), and hybrid environments
  • Strong understanding of adversary TTPs, including emerging AI-enabled threats
  • Demonstrated ability to analyze large-scale log and telemetry datasets to identify threats and detection gaps
  • Strong communication skills, with the ability to present complex technical concepts to both technical and non-technical audiences

Preferred Qualifications

  • Experience leading or contributing to AI-focused SOC pilots, automation initiatives, or advanced detection programs
  • Relevant certifications (e.g., CISSP, CySA+, CASP+, CCSP) or comparable credentials
  • Bachelor's degree in Cybersecurity, Computer Science, Engineering, or a related field

Our Client is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, or any other protected characteristic under federal, state, or local laws.

Our Client is committed to employing only candidates who are legally authorized to work in the United States. For compliance with the Immigration Reform and Control Act of 1986, all new employees, as a condition of employment, must complete the Employment Eligibility Verification Form I-9 and provide documentation that establishes identity and authorization to work. E-Verify will be used for employment verification as part of your onboarding process.

Our Client values integrity throughout our hiring process. As part of our standard verification procedures, candidates will be asked to provide documentation confirming employment history, education, and work authorization.