Lead, Detection Engineer - Cyber Defense & Response

About the role

Job Classification: Technology - Information Security Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions. Your Team & Role As a Lead Detection Engineer within the Cyber Defense and Response organization, you will drive the strategic evolution of the enterprise's cyber threat detection capabilities. You will enhance the overall security posture of the organization through leadership in the design, development, and deployment of advanced detection logic, ensuring coverage across a diverse and complex technology landscape. You will leverage deep technical expertise, broad threat domain knowledge, and innovative problem-solving to architect scalable, high-fidelity threat detection capabilities. You will establish and refine methodologies for identifying sophisticated threat actors as early as possible in the cyber kill chain, while guiding the team in operationalizing intelligence, automating workflows, and strengthening detection resilience. In this role, you will lead initiatives that require expert-level analysis of ambiguous data, complex systems, and numerous interdependent factors. You will mentor team members, champion inclusive leadership and continuous learning, and ensure alignment with business and risk priorities. Strong communication, strategic judgment, and an ability to influence across the organization are essential to your success. Here is What You Can Expect on a Typical Day As a Lead , you will perform all responsibilities of a Specialist while also providing technical leadership, strategic direction, and cross-team coordination , such as: Lead the design and implementation of enterprise-scale cyber threat detection capabilities across diverse technologies, ensuring accuracy, resilience, and alignment with risk priorities. Drive advanced research into adversarial TTPs , guiding the team in creating innovative and proactive detection methodologies across varied cloud & on-prem platforms Partner strategically with Cyber Threat Intelligence to prioritize, shape, and operationalize intelligence into high-impact, sustainable detection coverage. Collaborate with Cyber Threat Hunting to transform successful hunts into automated, scalable detections and long-term detection hypotheses. Architect and oversee development of detection engineering automations , frameworks, and reusable tooling to accelerate team velocity and maturity. Identify, influence, and implement detection engineering tooling, infrastructure, and data visibility improvements across the enterprise. Provide authoritative insight on detection and visibility gaps , driving remediation efforts with platform owners, security architects, and engineering teams. Lead cross-functional initiatives to establish security requirements, uplift telemetry coverage, and strengthen detection and response capabilities. Coach, mentor, and elevate team members , fostering technical excellence, analytical rigor, and innovative thinking. Champion emerging technologies and best practices , embedding continuous improvement and modern engineering approaches into day-to-day operations. The Skills & Expertise You Bring All Specialist-level capabilities plus elevated expectations in leadership, strategy, and influence: Extensive experience in detection engineering, incident response, threat hunting, or similar security operations roles, with a proven ability to lead complex technical initiatives. Expert understanding of Risked based alerting strategies and detection methodologies , capable of designing enterprise-wide detection models and influencing risk scoring frameworks. Deep knowledge of large enterprise architectures , including networks, operating systems (Windows, macOS, Linux), cloud ecosystems, and modern telemetry pipelines. Expert-level understanding of adversarial frameworks including MITRE ATT&CK and the Cyber Kill Chain, with demonstrated ability to translate them into operational detection logic. Advanced proficiency in Splunk Enterprise Security (ES) and its architecture, including correlation searches, risk frameworks, data models, and performance optimization. Advanced experience with SPL and KQL , including designing scalable, optimized, and maintainable detection libraries. Strong familiarity with SOAR, CI/CD, code repositories, and engineering pipelines , with the ability to influence development best practices for detection content. Ability to lead with inclusivity , leveraging diverse ideas and perspectives to achieve better analytical outcomes and team performance. Demonstrated leadership in continuous learning ,