Target logo
Target/Curated role

Senior Engineer – Threat Detection Operations

Brooklyn Park, Minnesota, United StatesFull-timePosted 25 days ago0 applicants
On-siteTechnology$98,000 – $176,000
Accepting applications
$98,000 – $176,000/ year
Type
Full-time
Mode
On-site
Level
Open

About the role

job description

. Job duties may change at any time due to business needs.

About the Role

  • As a Senior Engineer – Threat Detection Operations, you will help advance Target’s ability to detect and respond to sophisticated threats through the development of scalable, high-quality detections. This role focuses on transforming threat intelligence, incident learnings, and hunting outcomes into durable, high-fidelity detections. You will leverage large-scale security telemetry, analytics platforms, and automation frameworks to engineer detection content and improve security monitoring effectiveness. Working closely with Cyber Threat Intelligence, Incident Response, and security platform teams, you will turn actionable threat intelligence into high-confidence security signals to enable efficient detection and response. This role is ideal for someone who is highly technical, data-driven, and passionate about developing modern detection capabilities that keep pace with the evolving threat landscape. Core Responsibilities
  • Design, develop, deploy, and maintain production-ready detections across a variety of security platforms, including SIEM, EDR, cloud, identity, and network security technologies
  • Translate threat intelligence, incident response findings, and threat hunting outcomes into scalable, actionable detection logic
  • Develop and tune behavioral, signature-based, and statistical/anomaly-driven detections to identify malicious or suspicious activity while minimizing false positives and toil
  • Collaborate with Cyber Threat Intelligence, Incident Response, Threat Hunting, and platform engineering teams to identify and resolve detection and visibility gaps Validate detection coverage against adversary tactics, techniques, and procedures (TTPs) using frameworks such as MITRE ATT&CK Measure and report on detection performance, including fidelity, coverage, and effectiveness
  • Contribute to the continuous improvement of detection engineering practices, standards, and methodologies About You 4-year degree in cybersecurity, computer science, data science, or a related field, or equivalent practical experience. 5+ years of experience in cybersecurity, including at least 3 years focused on developing detections informed by threat intelligence, adversary behaviors, and/or data science and machine learning techniques.
  • Experience developing, deploying, and tuning detections across a variety of platforms such as SIEM, EDR, cloud security, and security analytics platforms
  • Experience with cloud security monitoring across AWS, GCP, or Azure environments
  • Strong understanding of end-to-end detection engineering concepts resulting in durable, scalable detection content
  • Experience scripting with languages such as Python, PowerShell, or Bash to automate security workflows and improve detection operations
  • Strong understanding of adversary tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK and the Cyber Kill Chain
  • Strong analytical and problem-solving skills with the ability to evaluate security telemetry and identify detection opportunities
  • Strong communication and collaboration skills with the ability to work effectively across security and engineering teams Additional Skills We Are Interested In
  • Experience with detection-as-code methodologies, CI/CD pipelines, and automated testing frameworks for security content
  • Experience applying statistical analysis, anomaly detection, machine learning, or behavioral analytics to improve detection capabilities
  • Experience with security data modeling, feature engineering, or graph-based threat detection techniques
  • Experience applying LLMs or AI-assisted workflows to detection development, alert triage, enrichment, or investigation use cases Relevant certifications such as GCIA, GCIH, GCED, GMLE, GCFA, or similar cybersecurity certifications This position will operate as a Hybrid/Flex for Your Day work arrangement based on Target’s needs. A Hybrid/Flex for Your Day work arrangement means the team member’s core role will need to be performed both onsite at the Target HQ MN location the role is assigned to and virtually, depending upon what your role, team and tasks require for that day.
  • Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target. Click here if you are curious to learn more about Minnesota. Benefits Eligibility Please paste this url into your preferred browser to learn about benefits eligibility for this role: https://tgt.biz/BenefitsForYou_D Americans with Disabilities Act (ADA) In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to candidate.accommodations@HRHelp.Target.com. Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed through this channel.   Target is one of the world’s most recognized brands and one of America’s leading retailers. We make Target our guests’ preferred shopping destination by offering outstanding value, inspiration, innovation and an exceptional guest experience that no other retailer can deliver. Target is committed to responsible corporate citizenship, ethical business practices, environmental stewardship and generous community support. Since 1946, we have given 5 percent of our profits back to our communities. Our goal is to work as one team to fulfill our unique brand promise to our guests, wherever and whenever they choose to shop. We'll contact you if you're selected for next steps. In the meantime, follow us at A Bullseye View for the latest news. Our Benefits We care about and invest in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at https://corporate.target.com/careers/benefits.

Skills mentioned

Google BigQuery
Big Data
Structured Query Language SQL
Amazon Web Services AWS
Apache Cassandra
ElasticSearch
Apache Hadoop
Hadoop Distributed File System HDFS
Data Transformation
Self-Starter
Researching
Analytical Thinking
Relational Database Management System RDBMS
Pipeline Computing

Benefits and perks

Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation.
Find competitive benefits from financial and education to well-being and beyond at https://corporate.target.com/careers/benefits.
JOIN TARGET CYBERSECURITY as a Senior Engineer – Threat Detection Operations, About Us Working at Target means helping all families discover the joy of everyday life.
We bring that vision to life through our values and culture.
Ready to apply?

Take the next step.
It takes 90 seconds.

Applications are reviewed directly by the Target hiring team. You will be redirected to their careers page.

0applicants so far
Full-timerole type
On-sitework mode

You can return to this role from saved jobs any time.