Luke Wescott

Detection Engineer specializing in ML-driven, detection-as-code systems — designing and tuning the detections that catch real threats at global scale. M.Sc in AI & Machine Learning. Off the clock: French lessons, hockey, books, and new music.

Tap any line to expand it — or flip to verbose.

• Detection Engineer II Sublime Security

  May 2025 — Present Remote
  • ▸ Bridge the ML and Detection Engineering teams
    Curate atomic detection rules that shape ML-based verdicts — giving detection engineering direct influence over model outcomes to maximize efficacy.
  • ▸ Maintain 800+ detection rules for hundreds of global customers
    Continuously update, manage, and expand the ruleset while tuning false-positive and false-negative rates against constantly evolving threats.
  • ▸ Help lead and grow the detection team
    Mentor a growing team of 3 junior detection engineers, support customer escalations, and interview candidates — helping grow the team from 5 to 13.
• Detection Engineer NuHarbor Security

  Jun 2024 — May 2025 Colchester, VT
  • ▸ Built detection-as-code pipelines — +40% threat detection
    Designed and deployed detection-as-code CI/CD pipelines, improving threat detection by 40%.
  • ▸ Automated detection with Python + SPL — −30% false positives
    Automated threat detection using Python and SPL, reducing false positives by 30%.
  • ▸ Drove detection use cases through threat modeling
    Conducted threat modeling and attack-path analysis and collaborated with intelligence teams to integrate new threat feeds, expanding detection coverage.
  • ▸ Built proprietary SOC automation tooling — +50% tuning efficiency
    Built proprietary tools to automate SOC workflows, improving tuning efficiency by 50%, and optimized detection systems for GCP and Azure environments.
• Security Engineer NuHarbor Security

  Jun 2023 — Jun 2024 Colchester, VT
  • ▸ Delivered tailored Splunk solutions for SOC analysts
    Built and administered Splunk environments that gave SOC analysts real-time insight and improved data-collection efficiency.
  • ▸ Designed detection strategies around client needs
    Aligned detection strategies to client requirements, improving alert fidelity.
• IT Staff Evergreen Parks & Recreation District

  2021 — 2022 Evergreen, CO
  • ▸ Kept POS systems and networks running
    Resolved technical issues across POS systems and networks, and built a Python ticket-management app that cut response time by 25%.
• Technology & Merchandising Pro Apple

  2019 — 2021 Denver, CO
  • ▸ Managed the Cherry Creek demo fleet via MDM
    Deployed and managed the entire fleet of demo products via internal MDM, and led the merchandising reset for the flagship store relocation.