The thought of leading a team that embraces math to catch bad guys in computer networks at scale gives you goosebumps. You want to solve big problems, like creating a detection strategy that's able to meet the needs of customers of all shapes and sizes. In a past life you kicked bad guys out of networks and in doing so developed a firm belief that finding threats isn't just an intel problem, it's a really big math problem! You may have even wondered what Sabermetrics, but for security operations, would look like. You'd call it SOCmetrics perhaps.

You've had a hand in building and streamlining detection release processes. You definitely know your way around a Jupyter notebook and you're really good at asking questions using Python. In fact, you're a storyteller who uses data to inspire action.

Strategy and innovation comes naturally to you. You're eager to teach others how to embrace data science and machine learning within the context of security operations.

Does this sound like the kind of challenge you'd like to take on? If so, we'd love to hear from you!

What Expel can do for you

Provide experience maintaining and evolving our detection strategy and pipeline.
Get you close to our customers to learn what's top of mind for them and how we can best serve them.
Drop you into a geographically distributed team in a highly collaborative culture where team members learn from and support each other.

What you can do for Expel

Improve and maintain the detection strategy of Expel's Workbench platform in order to meet the scale of our growing customer base.
Continuously provide feedback and coaching to inspire a high-performing team of detection and response engineers.
Improve and scale the use of data science within detection and response engineering. Detection isn't just a threat intel problem, it's a math problem.
Share how we use data to find threats with the community by writing blog posts, speaking at industry events, and engaging with practitioners using social media
Recruit, hire, coach and mentor detection and response engineers

What you should bring with you

A courageous, inspirational, patient, collaborative, curious, and empathetic mindset
Two years of experience leading a team in an operations, development, or data science context
Experience working with enterprise security architecture, detection, and response.
Up to date knowledge on attack surfaces and corresponding attacker tactics, techniques and procedures.
Extensive experience with Python and Jupyter Notebooks
Strategic and tactical focus.. You're able to push projects through from design to delivery without getting pulled into the weeds.
Experience creating and deploying data models to enable SOC analysts, incident responders, or clients.
Familiarity with at least one major cloud infrastructure provider (such as AWS, Google Cloud Platform, Azure)

Additional notes

At Expel, our employee benefits reflect our commitment to our crew. Unlimited PTO, equity for everyone, work location flexibility, up to 24 weeks of parental leave, and excellent health benefits are some of the ways we care for our Expletives.

Our office is based in Herndon, Virginia. However, we will consider remote work for this position.
We're only hiring those authorized to work in the United States. We do not currently sponsor immigration visas.

We're an Equal Opportunity Employer: You'll receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

We'll ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please let us know if you need accommodation of any kind.

Summary
Expel
Manager, Detection & Response Engineer