Position Details

Salary $161K – $184K USD / year

Type Full-Time

Experience lead

Exp. Years 3+ years

Education High School Diploma, GED, or equivalent; Bachelor's Degree preferred

Category Cybersecurity

About this role

Principal Associate - Detection Engineering leads AI-driven threat detections and detection-as-code initiatives, aligning threat detection with MITRE ATT&CK and fintech compliance across Capital One environments.

Key Responsibilities

AI-Driven Detection & Engineering: use LLMs/ML to automate detection logic
Detection-as-Code (DaC): design/maintain detections with GenAI acceleration
Strategic Architecture: apply MITRE ATT&CK for coverage
Offensive Alignment & Hunting: threat research and translate to detections
Stakeholder & Risk Management: document procedures for fintech compliance

Technical Overview

Focus on SQL/Python-based detections, DaC and GenAI, threat hunting, offensive security, and cloud-native logging with AWS and GCP. Mentors junior engineers and coordinates risk documentation.

Ideal Candidate

The ideal candidate is a security engineer with 3+ years in threat detection and offensive security, strong SQL/Python skills, experience with MITRE ATT&CK, and hands-on work with cloud logs and detection engineering. They should be capable of threat research, alert development, and mentoring in a fintech security environment.

Must-Have Skills

High School DiplomaGEDor equivalentAt least 3 years of experience in IT or Cyber SecurityAt least 2 years of experience with hostcloudapplication or network logsAt least 2 years of experience developing alerts for threat detectionAt least 2 years of penetration testing or offensive security experience

Nice-to-Have Skills

Bachelor's Degree in ITCyber Security or CS4+ years in Threat DetectionThreat Huntingor Security Engineering4+ years of experience with data science concepts and techniques4+ years of experience with Python1+ years publishing code to GitHub

Tools & Platforms

GitHub

Required Skills

Detection engineeringthreat detectionthreat huntingSQLPythonpenetration testingoffensive securityGitHubMITRE ATT&CKDaCGenAIAWSGCP

Hard Skills

SQLPythonThreat DetectionThreat HuntingDetection EngineeringDetection-as-CodeGenAIMITRE ATT&CKRed TeamPenetration TestingCloudAWSGCPGCPSecurity Testing

Soft Skills

AnalyticalCommunicationLeadershipStakeholder engagementDecision makingProblem solving

Certifications

Required

GCIAGCIHCISSPGMONGREMGCTDMLEGCP/AWS cloud certifications

Industry & Role

Industry Banking

Job Function Develop and implement detection engineering solutions to identify and mitigate cyber threats across Capital One environments

Role Subtype Detection Engineer

Tech Domains Python, SQL / PostgreSQL, Amazon Web Services, Google Cloud Platform, Microsoft Azure

Clearance & Visa

Visa Sponsorship No

Keywords for Your Resume

Principal Associate - Detection EngineeringDetection EngineeringThreat detectionThreat huntingDetection-as-CodeDaCGenAIMITRE ATT&CKOffensive Alignment & HuntingRed TeamPenetration testingCloudAWSGCPSecurity logsGREMGCIHGCIAGitHubDetection engineeringKnowledge of graph databasesPythonSQLNeptuneDBGremlinCypher

Deal Breakers

No experience with detection engineering or threat detection, Lack of hands-on logs experience (host/cloud/app/network), Cannot work in McLean or Richmond locations

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile