Talent.com
Threat Detection Specialist
Threat Detection SpecialistThe Hartford • Hartford, CT, US
serp_jobs.error_messages.no_longer_accepting
Threat Detection Specialist

Threat Detection Specialist

The Hartford • Hartford, CT, US
job_description.job_card.variable_hours_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Information Security Senior Specialist - IS07EE

We're determined to make a difference and are proud to be an insurance company that goes well beyond coverages and policies. Working here means having every opportunity to achieve your goals – and to help others accomplish theirs, too. Join our team as we help shape the future.

Hybrid work schedule

Expect to work in an office (Hartford, CT or Charlotte, NC) 3 days a week, Tuesday through Thursday.

Responsibilities

  • Design, write, and test correlation searches and detection rules in Splunk Enterprise Security (ES).
  • Implement and fine-tune Risk-Based Alerting (RBA) to prioritize critical threats, reduce alert fatigue, and improve detection accuracy.
  • Continuously refine, tune, and optimize detections to reduce false positives while maximizing visibility into real-world threats.
  • Align detection content with frameworks like MITRE ATT&CK and tailor it to customer-specific risks and environments.
  • Participate in adversarial emulations to enhance the robustness of our platforms.
  • Provide escalation support for SOC operations, including on-call support (approximately 5 weeks per year).
  • Partner with SOAR engineers to help shape playbook development from an analytical and security-first perspective.
  • Provide detection context, enrichment logic, and response requirements to support meaningful, threat-informed automation.
  • Identify opportunities to scale triage and response processes through intelligent automation.

Qualifications

  • 3+ years in cybersecurity, with direct experience in detection engineering, threat hunting, and incident response.
  • Expert-level proficiency in Splunk SPL, including development of correlation searches, dashboards, and scheduled alerts.
  • In-depth knowledge of Splunk Enterprise Security (ES), including hands-on experience configuring and tuning Risk-Based Alerting (RBA).
  • Working knowledge of Splunk SOAR, with the ability to collaborate on automation workflows from a threat detection perspective.
  • Strong understanding of adversary behavior, MITRE ATT&CK, cyber kill chain, and threat modeling.
  • Experience developing detections for cloud environments (AWS, Azure, or GCP).
  • Exposure to EDR platforms such as CrowdStrike, SentinelOne, or Microsoft Defender for Endpoint.
  • Scripting / automation skills in Python, PowerShell, or Bash are a plus.
  • Relevant certifications are desirable : GCDA, GCTI, GCFA, GCIH, OSCP, Splunk Certified Consultant / Architect / Admin.

    • Candidate must be authorized to work in the US without company sponsorship. The company will not support the STEM OPT I-983 Training Plan endorsement for this position.

    Compensation

    The listed annualized base pay range is :

    $116,400 - $174,600

    Actual base pay could vary and may be above or below the listed range based on factors including but not limited to performance, proficiency and demonstration of competencies required for the role. The base pay is just one component of The Hartford's total compensation package for employees. Other rewards may include short-term or annual bonuses, long-term incentives, and on-the-spot recognition.

    Equal Opportunity Employer / Sex / Race / Color / Veterans / Disability / Sexual Orientation / Gender Identity or Expression / Religion / Age

    J-18808-Ljbffr

    serp_jobs.job_alerts.create_a_job

    Detection Specialist • Hartford, CT, US