Security Developer/Researcher - NDR/IPS/IDS (Network)

Location: Bengaluru

Experience: 4+ years

About the Role

We are looking for an experienced Detection Engineer to join our MDR (Managed Detection & Response) team. In this role, you will design, develop, and optimize high-fidelity security detections across network, endpoint, and cloud environments. Youll bring deep expertise in networking, protocols, and threat detection to help solve complex security challenges and improve threat visibility for our customers.

Key Responsibilities

• Design, develop, tune, and optimize detections with a strong focus on:
• NDR / IDS / IPS detections and signatures
• Anomaly-based and behavioural-based detections
• Research emerging network-based threat vectors and translate them into effective security detections
• Perform deep analysis of network traffic and protocols including TCP/IP, DNS, HTTP , and related protocol analysers
• Write, review, and optimize Suricata / Snort rules
• Leverage MITRE ATT&CK , PCAP analysis , and threat intelligence feeds to enhance detection coverage
• Collaborate closely with MDR analysts and engineering teams to solve complex detection and security challenges
• Contribute to continuous improvement of detection quality, coverage, and performance

Required Skills & Experience

• 4+ years of hands-on detection authoring experience , primarily in network security
• Strong understanding of networking fundamentals and protocols (TCP/IP, DNS, HTTP, etc.)
• In-depth knowledge of:
• IDS / IPS / NDR technologies
• Protocol analysis and network threat detection
• Network-related security domains such as LDAP, NTLM , and similar protocols
• Proven ability to research threats and develop detections for network-based attack techniques
• Experience using MITRE ATT&CK , PCAPs , and threat intelligence feeds
• Working knowledge of third-party firewalls, IDS/IPS, and network edge devices (PAN, Cisco, Fortinet, etc.) including their capabilities and common vulnerabilities.

Development & Engineering Experience

Experience in at least two of the following languages or practices:

• Programming languages: Python, Go, Java, or C/C++
• Test-Driven Development (TDD)
• Strong understanding of DevOps tools and methodologies
• Secure development best practices
• Cloud development experience in AWS, Azure, or GCP , including:
• Kubernetes / Containers
• IaaS and key PaaS services
• Agile methodologies (Scrum / Kanban )