Cyber Incident Response/Customer Security Operations - SkillBridge Intern

Role

We are looking for a Detection Engineering - SkillBridge Intern to join our Red Canary Customer Service Operations team. This is a remote role reporting to the Manager, Detection Engineering.

The security landscape is always shifting and introducing new adversaries. Red Canary operates 24/7 to track down threats using the entirety of our customer’s data and deliver fast and practical detections to our customers. Together, we create a customer-centric culture that fosters success, adoption, and continuous growth.

What you’ll do (Role Expectations)

• Use Red Canary’s detection platform to analyze EDR telemetry, alerts, and log sources across several detection domains including Endpoint, Identity, SIEM, and Cloud/SaaS.
• Publish threats for customers using concisely-written communication while effectively conveying key and important indicators.
• Research coverage opportunities to create new detectors and tune existing ones through detector development.
• Improve the Detection Engineering workflow through orchestration and automation.

Who You Are (Success Profile)

• You thrive in ambiguity and are comfortable building the path as you walk it.
• You act like an owner with a passion for the mission that fuels your bias for action and integrity.
• You are a problem-solver who is energized by finding solutions to the hardest challenges to deliver the biggest impact.
• You are customer-obsessed, building deep empathy for the customer to anchor your decisions in solving real-world problems.
• You operate with urgency, maintaining a relentless focus on execution and delivering high-impact results quickly.

What We’re Looking for (Minimum Qualifications)

• Cybersecurity operational experience with a focus in Detection and Response.
• Must be located in the United States during the SkillBridge program.
• Must be a current Active Duty United States military member or a member of the United States Guard/Reserve component on active duty orders for at least the last 180 days with 180 days or fewer remaining prior to your date of discharge.
• Approval from your unit commander.
• MOU must be approved and submitted before start.

What Will Make You Stand Out (Preferred Qualifications)

• Experience with EDR tools.
• Experience conducting Incident Response activities.
• Malware/Threat Analysis and Detection Engineering experience.