Skip to main content
HimalayasHimalayas logo
MM
Open to opportunities

Michael Maysonet

@michaelmaysonet

I’m a Senior Detection and Response Engineer building secure detection, automation, and incident response across cloud systems.

United States
Message

What I'm looking for

I’m looking to build and tune detection logic and automated incident response workflows that reduce triage and MTTR. I want to partner with engineering and security teams to improve coverage, lower false positives, and ship reliable playbooks for cloud-native systems.

I’m a Senior Detection and Response Engineer with 10 years of experience building secure, reliable systems across healthcare and SaaS environments. I focus on incident response, anomaly investigation, detection logic, and automation—turning noisy signals into actionable detections, playbooks, and repeatable response processes.

At Spring Health and Optum, I built tooling and workflows that improved alert triage, reduced investigation time, and strengthened response across distributed services and data platforms. I partner well with engineering and security teams, ship quickly under pressure, tune thresholds to reduce false positives, and strengthen monitoring coverage while driving measurable improvements in MTTR.

Experience

Work history, roles, and key accomplishments

Spring Health logoSH
Current

Senior Detection and Response Engineer

Spring Health

Mar 2025 - Present (1 year 2 months)

Built Python and SQL triage workflows for security/reliability alerts, cutting investigator handoff time for high-priority incidents from hours to under 30 minutes. Created detection logic in Splunk and CloudWatch for suspicious authentication, unusual API access, and privilege changes, generating 20+ actionable alerts per week and reducing false positives by 25%.

PythonSQLSplunkAWS CloudwatchDetection EngineeringIncident ResponseKubernetesLLM Assisted Classification
Optum logoOP

Senior Detection and Response Engineer

Optum

Nov 2021 - Mar 2025 (3 years 4 months)

Owned security investigations across large-scale Kubernetes and AWS workloads by correlating EDR, SIEM, and application logs to trace anomalous behavior. Built Python automation for case enrichment/evidence collection (reducing repetitive analyst work by 50%) and improved detection rules for login abuse and data exfiltration indicators in a high-volume SaaS environment.

PythonSQLKubernetesAWSIncident Response
RH

Senior Detection Engineer

Rally Health

Jul 2020 - Nov 2021 (1 year 4 months)

Built detections for application, cloud, and identity activity using SQL and Splunk, increasing visibility into suspicious access patterns. Investigated security anomalies in AWS and Kubernetes and documented repeatable response steps that cut mean investigation time by 30%, while automating alert enrichment to prioritize high-risk cases from a daily queue of 100+ events.

SQLSplunkAWSKubernetesSecurity AnalyticsAnomaly InvestigationsAlert EnrichmentThreat Detection
SiteSpect logoSI

Software Engineer

SiteSpect

Sep 2017 - Jul 2020 (2 years 10 months)

Built monitoring and logging features for SaaS services using Python, JavaScript, and SQL, improving traceability for production issues across customer environments. Developed internal diagnostics and alerting for APIs, databases, and infrastructure events, reducing troubleshooting time from days to hours for support and engineering.

PythonJavaScriptSQLMonitoring And AlertingAlertingCloud OperationsProduction Support

Education

Degrees, certifications, and relevant coursework

IR

Inter American University of Puerto Rico–Bayamón

Bachelor of Science, Computer Science

2011 - 2016

Earned a Bachelor of Science in Computer Science from Inter American University of Puerto Rico–Bayamón from 2011 to 2016.

Tech stack

Software and tools used professionally

Splunk logo

Splunk

GitHub logo

GitHub

Kubernetes logo

Kubernetes

Jenkins logo

Jenkins

GitHub Actions logo

GitHub Actions

MySQL logo

MySQL

PostgreSQL logo

PostgreSQL

MongoDB logo

MongoDB

Gmail logo

Gmail

Node.js logo

Node.js

Django logo

Django

Next.js logo

Next.js

Redis logo

Redis

Terraform logo

Terraform

Jira logo

Jira

JavaScript logo

JavaScript

Kafka logo

Kafka

RabbitMQ logo

RabbitMQ

PagerDuty logo

PagerDuty

Grafana logo

Grafana

Prometheus logo

Prometheus

Wireshark logo

Wireshark

Datadog logo

Datadog

GraphQL logo

GraphQL

gRPC logo

gRPC

OpenSearch logo

OpenSearch

Ansible logo

Ansible

Root Cause logo

Root Cause

SQL logo

SQL

Snyk logo

Snyk

Nmap logo

Nmap

Evidence logo

Evidence

Bash

Keep logo

Keep

Remote logo

Remote

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Detection & Response EngineerIncident Response EngineerDetection EngineerSecurity EngineerCloud Security EngineerDetection And Response EngineerSenior Threat Detection Engineering ManagerSenior Threat Hunting EngineerThreat Detection EngineerSenior Threat Detection AnalystSenior Incident Response AnalystSenior Cybersecurity EngineerSenior Threat Data Engineer

Skills

NodeJS RemotePythonSQLTypeScriptJavaScriptBASHHTMLCSSReactNext.jsJavaScript (Node.JsExpressReduxDjangoFlaskAWSAzureGCPKubernetesDockerEKSLambdaS3EC2CloudwatchIAMVPCPostgreSQLMySQLMongoDBRedisSQL ServerSnowflakeKafkaRabbitMQSQSSNSRESTGraphQLgRPCGitGitHubGitHub ActionsJenkinsTerraformAnsibleSplunkDatadogPrometheusGrafanaELK StackOpenSearchPagerDutySnykNmapWiresharkJiraEvidenceGmailKeepRoot Cause

Interested in hiring Michael?

You can contact Michael and 90k+ other talented remote workers on Himalayas.

Message Michael

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan