R
RiskCon Advisory
Cybersecurity Detection Engineer – SIEM & Targeted Adversary Emulation
Skills
PythonPowerShellMicrosoft Sentinel (SIEM)
16 days ago
Exclusive opportunity
Share this opportunity
Share this opportunity to other talents of your network:
✓ Offer them a visibility boost with clients.
✓ Help your contacts find their next job.
Important information
Contract type:
Freelance
Salary / Daily rate:
670
This job is at 0% commission 🎉Location:
Paris, France
Starting date:
Urgent
Work mode:
Hybrid
Published on:
5 March 2026
What they need
For a Big Four firm, we are looking for a Cybersecurity Detection Engineer to join a high-performing security team and strengthen advanced threat detection capabilities within a complex enterprise environment.
Role Overview
We are looking for a Cybersecurity Detection Engineer to strengthen an advanced detection capability within a mature security environment.
Your primary mission is clear: when an adversary moves, we see it.
You will spend most of your time inside the SIEM, engineering high-fidelity detections based on a deep understanding of offensive tradecraft.
Primary Focus: Detection Engineering
Advanced Detection Logic
Design and develop complex detection rules using KQL
Detect sophisticated behaviors such as:
Token manipulation
Command-and-control (C2) jitter
Advanced post-exploitation techniques
Move beyond simple IOC-based detection toward behavior-driven analytics
Telemetry Deep Dive
Perform in-depth analysis of raw logs from:
EDR platforms
Identity Providers
Cloud infrastructure
Identify visibility gaps
Define and implement appropriate logging policies to ensure proper coverage
False Positive Reduction
Apply strong understanding of normal vs malicious administrative behavior
Tune and optimize existing detection rules
Improve signal-to-noise ratio to prevent SOC alert fatigue
Secondary Focus: Targeted Adversary Emulation
In this role, offensive activity serves a defensive purpose.
Detection Validation
Execute specific, manual attack sequences to validate newly created detection rules
Ensure expected alerts are triggered
Immediately adjust and improve detection logic when gaps are identified
Gap Analysis
Simulate techniques mapped to MITRE ATT&CK
Identify blind spots in current detection coverage
Rapidly transition from identifying gaps to engineering solutions
Key Responsibilities
Translate complex threat intelligence and known Red Team techniques into actionable detection logic (KQL)
Review and optimize the existing detection rule library for both accuracy and coverage
Collaborate closely with the Incident Response team to:
Understand why previous attacks were missed
Engineer rules that prevent recurrence
Profile
Strong experience in Detection Engineering
Advanced proficiency in KQL
Deep understanding of modern offensive TTPs and the MITRE ATT&CK framework
Experience analyzing EDR, Identity, and Cloud telemetry
Ability to think behaviorally rather than rely solely on static indicators
Red Team or adversary emulation experience is a strong plus
Mission Objective
Build and continuously improve a behavior-driven detection capability that is validated through controlled adversary simulation and optimized to deliver high-confidence alerts to the SOC.
This role is suited for a senior professional who can operate comfortably between defensive engineering and offensive simulation with strong analytical rigor.
Expérience : 4 years
Sector : Assurance
Specific tools to be familiar with Python, PowerShell, C/C++, Active Directory, Microsoft Sentinel (SIEM)
Languages : Français, Anglais
Project Start Date : ASAP
Other offers great for you!
These companies are also looking for great profiles
A
Almatech
Senior Fullstack Engineer - Startup
100-120K euros
Permanent contract
In 2 to 4 weeks
Paris, France
Hybrid
Skills
NextReactNodeTypescriptExpressPostgreSQL
9 hours ago
Exclusive opportunity
E
Easypartner
Data Engineer – Scala / Spark - Solution digitale - Paris (H/F)
Freelance
In 2 to 4 weeks
Remote
Skills
Data Engineering
4 hours ago
Exclusive opportunity
E
Easypartner
Data Analyst – Data produit & trafic web - Paris (H/F)
Freelance
In 4 to 8 weeks
Paris, France
Hybrid
Skills
Data Analyst
3 hours ago
Exclusive opportunity