Job description

Who We Are: With the collective efforts of our epic team members, we're trailblazing a new path in the DME industry. Synapse Health was founded in 2016 with a goal to fix the fractured DME ecosystem and completely transform the industry. Built on decades of industry and leadership experience, we've launched tech-based solutions that eliminate age-old DME headaches, resulting in a seamless experience for all. We are proud to offer work that matters, on a mission that matters. Intrigued? Learn more at SynapseHealth.com and on Synapse Health's LinkedIn. What We Need: As a Threat Detection Security Engineer at Synapse Health, you will play a critical role in proactively identifying and responding to threats within our cloud infrastructure. You will conduct manual threat hunts using cloud log data, telemetry, and behavioral signals to uncover malicious activity, and perform threat modeling to identify likely attack paths across services. You will build automated detection rules and correlation logic within our SIEM platform and develop playbooks that automate the investigation steps typically performed by a SOC analyst—such as data enrichment, context gathering, and incident classification—to accelerate response and reduce manual workload. What You Will Do: • Manual Threat Hunting: Perform proactive analysis of log data, cloud telemetry, and behavioral signals to detect suspicious activity or advanced threats across cloud services. • Threat Modeling: Conduct threat modeling exercises to identify likely attacker tactics, techniques, and procedures based on organizational assets, infrastructure, and workflows. • Detection Engineering: Develop and tune automated detection rules and correlation logic in a SIEM platform to identify malicious activity with high fidelity. • Playbook Development: Create and maintain automation playbooks that replicate SOC analyst investigation workflows such as enrichment, validation, and incident categorization • Secure Software Development Lifecycle: Partner with development teams to integrate security best practices into every stage of the SDLC, strengthening the protection of our applications. • Log Integration and Normalization: Work with internal teams to ensure comprehensive log ingestion from relevant Azure services and standardize event formats to support effective detection. • Monitoring and Reporting: Continuously monitor the environment and provide reporting on threat activity, detection coverage, and alert performance to inform security strategy and operational improvements. • Cross-Team Collaboration: Collaborate with engineering, infrastructure, and compliance teams to improve detection coverage and security operations maturity. • Compliance Support: Provide input and evidence in support of HIPAA, GDPR, and SOC 2 controls related to threat monitoring and incident detection. What You Have: At Synapse Health we've intentionally built a culture of kindness, collaboration and creativity, and we consider those qualities to be table stakes for any new team member. Additional requirements include: • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent practical experience). • 5+ years of experience in threat detection, threat hunting, or security operations within cloud environments. • Strong understanding of attacker tactics, techniques, and procedures (TTPs), and hands-on experience applying the MITRE ATT&CK framework. • Experience designing, tuning, and deploying detection logic within a SIEM platform. • Experience with log normalization and parsing across diverse cloud-native services. • Familiarity with scripting and automation (Python, PowerShell, Bash) to support detection and response workflows. • Exposure to SOAR platforms or automated playbook development for alert triage and investigation. • Experience integrating threat intelligence sources to drive proactive detection and enrichment. • Working knowledge of security frameworks and best practices (e.g., NIST, ISO 27001). • Ability to make risk-based decisions and prioritize threats based on impact and likelihood. • Strong analytical and communication skills, with experience documenting findings and recommending remediation. What Sets You Apart: • Experience building high-fidelity detections based on threat intelligence, IOCs, and behavioral patterns. • Familiarity with detection-as-code practices or structured management of detection logic via version control. • Experience contributing to or working alongside red/purple teams to validate and tune detections. • Deep understanding of adversary simulation, threat emulation, or offensive tradecraft. • Hands-on experience securing Kubernetes environments and detecting threats in containerized workloads. • Prior experience in fast-paced or startup environments requiring ownership across the detection and response lifecycle. What Sets Us Apart: It's no secret that most of us work to provide for ourselves and those we love, but just because we have to work, doesn't mean we can't enjoy it. In fact, at Synapse Health, we insist on it! We want our team members to thrive personally and professionally, which is why our benefits include: • Professional growth opportunities with compelling career paths • Healthy work-life balance culture with paid time off (PTO) • Medical, dental and vision insurance for full-time team members • 401K savings plan with employer contribution match Synapse Health is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. Synapse Health, Inc will never request personal or sensitive information during the recruitment process. Please see our Careers Page for more information to protect yourself from scammers and to learn more about our recruitment process. Privacy Policy

Requirements