Level 2 Detection Engineer

About Woodside Energy

We are a global energy company providing reliable and affordable energy to help people lead better lives. Join our team at Woodside Global Solutions in Bengaluru where talent digital expertise and operational excellence converge to solve complex energy challenges accelerate change and reimagine business capabilities to support Woodsides global operations and our role in the energy transition.

Founded in 1954 Woodside established the liquefied natural gas (LNG) industry in Australia 40 years ago and supplies customers around the globe. 70 years on Woodside continues to be driven by a spirit of innovation and determination.

At Woodside we know great results come from our people feeling valued getting the support they need to reach their full potential and working in a psychologically and physically safe work environment. We believe in nurturing talent and providing opportunities for continuous learning and career advancement.

Refer to our corporate website for more information about our different locations and projects: What We Do - -Link: What we do - Woodside Energy

About Woodside Global Solutions

Woodside Global Solutions in Bengaluru is being built as a hub of excellence to drive innovation digital transformation and global collaboration.

Working as one Global team the Woodside Digital team is a trusted partner driving transformation within the organisation. We are bold in our ambitions and resolute in our actions. Through cutting-edge AI robust cyber security and advanced data solutions we drive innovation and influence every part of our business.

We are looking for talented professionals who are passionate about technology and eager to make a global impact helping to shape the future of Woodside together.

About the role

The Detection Engineer is a sufficiently trained engineer that delivers reliable high quality detections by developing and documenting rules and assisting with alert tuning. This role is responsible for delivering and executing detection engineering work through approved pipelines while developing technical capability in threat led detection engineering. They partner closely with CDC analysts and Digital stakeholders to align detection requirements. They model One Team behaviours ensuring their work is operationally sound well documented and aligned to broader cyber priorities.

Duties & Responsibilities:

• Demonstrate a One Team approach working openly and constructively across CDC pods engineering groups and Digital stakeholders to uplift overall detection capability.
• Demonstrate critical thinking structured problem solving and focus on delivering results.
• Maintain a growth mindset which encourages continuous learning and uplift across the Cyber team.
• Support outcomes through disciplined software engineering practices sustainable work processes and accurate documentation.
• Actively pursue professional and technical development to support ongoing capability uplift.
• Contribute to the maturity of Detection-as-Code practices across the CDE team.
• Implement and execute detections through approved CI/CD workflows under defined engineering standards.
• Participate in testing validation and tuning activities under guidance from Senior and Lead Detection Engineers.
• Contribute to continuous improvement initiatives including documentation refinement optimizing current workflows and aligning to new engineering standards.
• Review alert rules based on BP/FP rates assisting in tuning alerts to improve relevance and reduce false positives and documenting tuning processes and outcomes.
• Maintain a tidy code repository to support software engineering best practices using CI/CD pipelines.
• Deliver validate and test detections in line with engineering best practices and Cyber Defense priorities.
• Conduct testing activities to validate detections against expected malicious behaviours escalating gaps or issues for review.
• Drive alignment between CDE and CDC to ensure clear detection handover and SIEM queue optimisation.
• Conduct alert quality review activities to support and improve the average Mean Time to Detect.

Skills & Experience:

3-5 years of software development security engineering cloud infrastructure (AWS or Azure) or equivalent technical experience.
Ability to develop code in the Python programming language.
Understand Infrastructure as Code and CI/CD technologies.
Proficient in Git & GitHub for code and version control management.
Familiarity with adversary tactics techniques and procedures.
Experience with Microsoft detection capabilities and security platforms.
Competency in KQL development to identify threats or malicious activity.
Proactive and critical thinking to tie detection recommendations back to threat led detection coverage.

If you think you can do this job but dont meet all the criteria thats OK! Please apply. At Woodside we value people with diverse experiences and backgrounds as they provide unique perspectives that help us innovate.

Recognition & Reward:

What you can expect from us:

Commitment to your ongoing development including on the job opportunities and formal programs
Inclusive parental leave entitlements for both parents
Values led culture
Flexible work options
Generous annual leave sick leave and casual leave
Cultural and religious leave with flexible public holiday opportunities
A competitive remuneration package featuring performance-based incentives with uncapped Employer Provident Fund

Woodside is committed to fostering an inclusive and diverse workforce culture which is supported by our Values. Inclusion centers on all employees creating a climate of trust and belonging where people feel comfortable to bring their whole self to work. We also offer supportive pathways for all employees to grow and develop leadership skills.