Detection Lab Architect

As a Detection Lab Architect, you’ll shape the future of Gravwell content by running the testing infrastructure that powers our detection kits. You’ll design the frameworks that validate detections, research and integrate new log sources, and ensure kits align with modern detection engineering practices. You’ll be part builder, part researcher, and part strategist—bridging the gap between raw log data and actionable detections. Your Responsibilities include owning and operating the Gravwell detection lab infrastructure, ensuring high-fidelity log generation and testing environments. You will also design and evolve the architecture of Gravwell detection kits, including schema alignment, enrichment workflows, and deployment strategies. Research, acquire, and integrate new log sources to expand Gravwell’s detection coverage in an automated and reproducible manner, and build and maintain reusable testing pipelines for validating detection content at scale.