Threat Detection Engineer | SIEM & EDR – Leading Cyber Company in Norway

Do you enjoy creating detection rules that actually catch real threats – not just noise?
We’re working with a top-tier consultancy in Norway that’s hiring into their detection engineering and threat detection team – a specialized group focused on proactively uncovering attacker behaviour in critical infrastructure and enterprise environments.

This is the perfect role if you:

 

• Have 3–5+ years of SOC or CSIRT experience

• Are confident with detection development in tools like Microsoft Sentinel, Splunk ES, or SentinelOne

• Understand MITRE ATT&CK, Sigma rules, and threat hunting

• Love digging through logs to identify patterns and create use cases that matter

What you’ll do:

• Build detection rules that stop threats before they escalate

• Analyze log data and raw telemetry for anomalies and patterns

• Collaborate with SOC and IR teams to refine detection coverage

• Contribute to threat hunting and proactive security strategies

• Help strengthen the overall detection posture across clients

Why this team?

You’ll join a consultancy delivering security solutions to some of Norway’s most important organizations, working with both public and private sector clients. The environment is collaborative, modern, and focused on professional development — including certifications, learning support, and technical career progression.

If you're passionate about detection engineering and want to work on the front lines of cybersecurity — this is the place to do it.

Thank you for your interest in this opportunity. If your application is successful, we will contact you to discuss the position in more detail within 48 hours of receiving your CV. Please assume your application has been unsuccessful if you do not hear back from us within 48 hours.