Detection Engineer; CTH

Position: Detection Engineer (CTH - 6 Months)
Location: Bengaluru

LG Ad Solutions is a global leader in connected TV (CTV) and cross-screen advertising. We pride ourselves on delivering state-of-the-art advertising solutions that integrate seamlessly with today's ever-evolving digital media landscape.

The Opportunity:

We are growing and seeking a Detection Engineer to design, tune, and operationalize detections within our Databricks SIEM, including emerging AI-driven features. In this role, you will build high-fidelity detections, create advanced threat hunts, and help integrate and evaluate analytics to improve alert quality and detection coverage. You will collaborate closely with Security, Data, and Dev Ops teams to strengthen visibility across our cloud and data environments and enhance our overall threat detection and response capabilities.

This role reports to Senior Security Engineer II.

Responsibilities:

● Own the full lifecycle of detection engineering within our Databricks SIEM, including rule creation, tuning, optimization, and maintenance.

● Build detection content using SQL, YAML, notebooks, and scalable pipelines across a wide range of log sources.

● Leverage Databricks' AI-enhanced SIEM features, anomaly detection modules, and insights to improve detection fidelity and reduce false positives.

● Support the evaluation, tuning, and operational integration of AI-driven detections, enrichment, and scoring models.

● Conduct proactive threat hunts using Databricks aligned to MITRE ATT&CK and evolving threat trends.

● Analyze and validate alerts from Databricks SIEM, Red Canary MDR, Check Point, and other platforms, ensuring high signal-to-noise ratio.

● Collaborate with Data Engineering to onboard new log sources, improve data normalization, and enhance telemetry coverage.

● Build dashboards, coverage maps, and detection performance metrics for internal visibility and continuous improvement.

● Provide detection-related context during incidents and recommend remediation or automation enhancements.

● Stay current on attacker techniques, data lakehouse SIEM advancements, and AI/ML applications in threat detection.

Requirements:

● Bachelor’s Degree or 4+ additional years of cybersecurity experience in lieu of a degree.

● 5–10 years of experience in detection engineering, security operations, incident response, or threat hunting.

● Hands-on experience with SIEM platforms, ideally including building and tuning detection rules.

● Strong data analysis skills with SQL, YAML and Python.

● Familiarity with AI-driven features in security tooling (e.g., anomaly detection, ML-enhanced scoring, LLM-assisted triage).

● Solid understanding of cloud environments (AWS preferred), logging architectures, and common security controls.

● Strong knowledge of attacker behavior, MITRE ATT&CK, and common detection methodologies.

● Experience working with MDR/EDR solutions, security logs, cloud identity events, and network telemetry.

● Excellent communication skills to collaborate with engineering, Dev Ops, and data teams.

Preferred:

● Experience with Databricks notebooks, Delta Lake, analysis notebooks.

● Strong Background in detection writing, testing and maintaining.

● Exposure to AI/ML modeling, anomaly detection pipelines, or operationalizing ML models in security workflows.

● Familiarity with Terraform or Pulumi to help identify and remediate infrastructure misconfigurations.

● Certifications such as GCDA, GMON, GCIA, GCTI, Security+, or AWS cloud certifications.

LG Ad Solutions provides equal work opportunities to all team members and applicants, and it prohibits discrimination and harassment of any type on the basis of race, color, ethnicity, caste, religion, age, sex (including pregnancy), national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by our policies or federal, state, or local laws.

We want to ensure that our hiring process is accessible. If you need reasonable accommodation for any part of the application process because of a medical condition or disability, please send an email to careers to let us know the nature of your request.