RemoteLeaf Logo
Log in Sign up

Security Engineer - Argentina

1 month, 1 week ago
Argentina
Full-time
Mid Level
AI Engineer
Artificial Intelligence and Machine Learning
ClickHouse Microservices Python SIEM SQL YAML
Apply Now
SenseOn

SenseOn

SenseOn provides a consolidated cyber defense system that automates threat detection, investigation, and response, reducing noise and enhancing visibility.

Professional Services
51-250
Founded 2017
$26M raised
View All Jobs 4

Description

  • Author and maintain real-time streaming detection rules compiled from YAML into binary rulesets.
  • Develop batch behavioral detections using parameterised ClickHouse SQL on a seconds-to-minutes cadence.
  • Write ClickHouse aggregations and materialised views that power statistical anomaly baselines.
  • Build and maintain a MITRE-mapped hunting query library for analysts.
  • Map detections precisely to MITRE ATT&CK tactics, techniques, and subtechniques.
  • Instrument detections by measuring false positive rates, defining confidence scores, building test datasets, and owning rule quality.
  • Tune detections against real-world telemetry and investigate why rules fire.
  • Extend the existing LLM-driven rule writing engine to broaden automated detection coverage.
  • Design pipelines where LLMs propose detections from threat intelligence, CVEs, and analyst findings with validation and human approval gates.
  • Create feedback loops and evaluation harnesses for AI-generated detections, including prompt design, pass@k, and FP/TP scoring.

Requirements

  • 3+ years writing detection content such as SIEM rules, EDR detections, YARA, Sigma, or equivalent.
  • Strong working knowledge of MITRE ATT&CK and adversary tradecraft.
  • SQL proficiency, including writing analytical queries and understanding query performance at scale.
  • Hands-on experience using LLMs in a production or engineering context, including prompts, evaluation, and API-based implementations.
  • Python fluency for reading, writing, and debugging detection pipelines, API endpoints, and telemetry processing code.
  • Ability to evaluate AI-generated output critically and build guardrails against hallucinations in security use cases.
  • Clear, precise written communication in English.
  • Experience with ClickHouse or other columnar/OLAP databases is a strong advantage.
  • Familiarity with Protocol Buffers or other binary serialisation formats is a strong advantage.
  • Background in threat hunting, including hypothesis building and operationalising findings into detections, is a strong advantage.
  • Experience designing or contributing to AI evaluation frameworks such as eval harnesses, golden datasets, or pass@k scoring is a strong advantage.
  • Exposure to high-volume network or endpoint telemetry such as DNS, NTLM, Kerberos, process execution, or network flows is a strong advantage.
  • Prior work at a security vendor, MDR, or SOC where detection quality had direct customer impact is a strong advantage.

Benefits

  • Competitive salary.
  • Unlimited holiday allowance.
  • Bi-annual career progression reviews.
  • Learning and development investment, including certifications and conferences.
  • Work MacBook provided.
  • Unlimited access to the latest LLM models for experimentation and research.
  • Equal opportunity employment and a commitment to an inclusive hiring process.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Dropbox

Senior Infrastructure Software Engineer, Identity & Auth Engineering

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a software engineer to re-architect its Identity platform and services for a future as a multi-product company, with work focused on scaling foundational systems across the organization.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$141k-$191k
Go OAuth OpenID Connect Python SAML
14 minutes ago
S

Generative AI Engineer (Instructor)

Sizanid Staffing Staffing & Recruiting

Generative AI Engineer (Instructor) at a technology organization, responsible for developing generative AI solutions while training teams and clients on their implementation and best practices.

United States Part-time Senior AI Engineer Training Specialist
BERT Generative AI GPT LLM NLP Python PyTorch SageMaker TensorFlow
29 minutes ago
Anduril Industries

Senior Detection and Response Engineer

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Senior Detection and Response Engineer to build and operate defensive security controls that protect the infrastructure supporting its defense technology products.

United States Full-time Senior Security Engineer
$166k-$220k
AWS Azure CI/CD CloudFormation Docker GitHub Go Kubernetes Network Security Python Rust SQL Terraform
29 minutes ago
INflow Federal

DevSecOps Engineer

INflow Federal 51-250 Aerospace & Defense

INflow Federal is seeking a fully remote DevSecOps Engineer to support an enterprise case management solution for Department of Defense mission partners by securing and automating cloud-based CI/CD and infrastructure operations in AWS GovCloud.

United States Full-time Senior DevOps Engineer Security Engineer
Agile AWS Bash CI/CD CloudFormation Docker ELK Stack Git GitLab CI Helm Jenkins Kubernetes PowerShell Prometheus Python Terraform
46 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers