SOC/Incident Report Engineer
Tasks
- Assess cloud security posture
- Build SOAR playbooks
- Conduct forensic acquisition and analysis
- Conduct threat hunting
- Coordinate incident response playbooks
- Document incidents and lessons learned
- Evaluate identity and access events
- Integrate data sources for SIEM
- Investigate cloud logs
- Lead incident lifecycle investigation
- Maintain chain of custody
- Map adversary tactics to MITRE ATTACK
- Monitor and respond to cloud security events
- Monitor security alerts
- Perform incident containment eradication recovery
- Perform malware triage dynamic and static
- Perform threat intelligence research
- Prepare technical and executive reports
- Triage security alerts
- Tune detection rules
Perks/Benefits
- Career development
- Comprehensive benefits
- Discretionary bonus
- Diversity Equity and Inclusion
- Hybrid schedule
- Transparent leadership
- Work from home flexibility
Skills/Tech-stack
AWS CloudTrail | AWS GuardDuty | Activity logs | Audit Logs | Autopsy | Azure Activity Logs | Azure Sentinel | CEH | CISSP | CYSA | Chain of Custody | Cloud Security Command Center | Command Center | CrowdStrike | Defender XDR | Defender for Endpoint | Digital forensics | EDR | FTK | GCP Audit Logs | GCP audit | Google Cloud | Google Cloud Security | Google Cloud Security Command Center | Incident Response | KAPE | KQL | Linux | MacOS | Malware analysis | Malware triage | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | NDR | Networking Fundamentals | Powershell | Python | SIEM | SOAR | Security Command Center | Splunk | Threat hunting | Velociraptor | Windows
Education
N/A
Related jobs
-
Mid-level Full TimeArlington/Rosslyn, Virginia, United States4h ago
-
Cloud Support Engineer USD 114K-190KAWS | Alerting | Azure | Combination of technical degree or certifications | Google Cloud247 coverageMid-level Full TimeUSA-VA-Tysons4h ago
-
Cloud Support Engineer Evenings USD 114K-190KAWS Cloud | Azure | ITIL | Incident Response | Kubernetes24x7 incident support | Rotating weekendsMid-level Full TimeUSA-VA-Tysons4h ago
-
Cyber Software Engineer USD 75K-125KAgile Development | Code review | Git | Integration Testing | JiraMid-level Full TimeUSA-VA-Herndon4h ago
-
Senior-level Full TimeUSA-VA-Chantilly4h ago
-
Senior-level Full TimeUSA-VA-Chantilly4h ago
-
Bash | C# | CI/CD | JUnit | JavaFinancial benefits | Health and wellness benefitsEntry-level Full TimePennsylvania, Exton4h ago
-
Senior/Tech Lead Software Development Engineer, Network Monitoring & Alerts - San Jose USD 212K-410KAnomaly Detection | Data Processing | Data Visualization | Data collection | Fault DiagnosisSenior-level Full TimeSan Jose, California, United States4h ago
-
Anomaly Detection | Apache Flink | CI/CD | CIS | CMDBSenior-level Full TimeSan Jose, California, United States4h ago
-
Senior Smart NIC Software Engineer, Linux Networking USD 174K-252KC# | C++ | Data Structures | Data Structures and Algorithms | DebuggingSenior-level Full TimeRaleigh, NC, USA; Durham, NC, USA5h ago
-
Associate Principal, Trust and Safety, GenAI USD 142K-205KCybersecurity | Dashboarding | Data Transformation | Data Visualization | Data collectionMid-level Full TimeWashington D.C., DC, USA; Atlanta, GA, …5h ago
-
Senior Security Engineer, Google Public Sector USD 174K-252K800-171 | 800-53 | Access Management | Ansible | Cloud platformUp to 25 percent domestic travelSenior-level Full TimeReston, VA, USA; Colorado, USA5h ago
-
Sr Engineer, IT Platform Security USD 37K-54KAPI Development | Active Directory | Agile | Automation | Automation and response401k program | Car discounts | Cruise discounts | Employee assistance program | Flexible spending accountsSenior-level Full TimeFort Worth, TX, US9h ago
-
Security Engineer USD 186K-320KAWS GuardDuty | EDR | Encryption | ISO 27001 | Incident ResponseHealth and wellness resources | Remote work flexibility | Vacation and personal timeSenior-level Full TimeAustin, Texas12h ago
-
Software Engineer IV USD 135K-183KAPI | ASPA | Ansible | Auto-remediation | AutomationHybrid work schedule | Tech talks and internal events | Training and education opportunities | Tuition reimbursementSenior-level Full TimeReston,Virginia,United States13h ago
-
Sr. Cloud Security Engineer/Architect USD 130K-220KAWS | Access Management | Alerting | Azure | CI/CD401k plan | Employee assistance program | Employee stock purchase plan | Life, accident, and disability insurance | Medical/Dental/Vision insuranceSenior-level Full TimeMilpitas, CA, United States13h ago
-
Data Protection Engineer (Trellix) USD 104K-166KAir-gapped | Air-gapped environments | Clipboard | Data Classification | Data Loss PreventionSenior-level Full TimeTampa, FL13h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector mitigation | CI/CD | Cloud Security | Endpoint SecurityCommuter benefits | Health insurance | Paid time off | Professional development reimbursement | Relocation assistanceSenior-level Full TimeAshville, Ohio, United States14h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector analysis | CI/CD | Cloud Security | Continuous DeploymentCaregiver & wellness leave | Commuter benefits | Family planning and parenting support | Generous time off | Healthcare benefitsSenior-level Full TimeCosta Mesa, California, United States14h ago
-
Senior Security Engineer USD 166K-220KAWS | AWS CDK | Attack Vectors | Azure | CI/CD401k match | Commuter benefits | Dental insurance | Disability insurance | Health insuranceSenior-level Full TimeSeattle, Washington, United States14h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector mitigation | CI/CD | Cloud Computing | Design review401k retirement plan | Caregiver leave | Commuter benefits | Dental insurance | Disability insuranceSenior-level Full TimeWashington, District of Columbia, United States14h ago
-
Senior Product Security Engineer USD 160K-250KCI/CD | Cloud Security | Cybersecurity infrastructure | Detection engineering | EDRSenior-level Full TimeUS - San Francisco14h ago
-
DevSecOps Engineer- Secret Clearance Required USD 105K-160KAgile | Azure DevOps | Bash | CI/CD | DockerDental insurance | Health and wellness benefits | Medical insurance | PTO | Retirement savings planMid-level Full TimeAberdeen Proving Ground, MD, US15h ago
-
Staff Engineer, Identity & Access Management (IAM) USD 180K-212KABAC | Access Management | Active Directory | Adaptive Authentication | C++Senior-level Full TimeSalt Lake City, Utah R15h ago
-
Staff Software Engineer, Security & Privacy USD 210K-302KAudit Logging | Authentication | Authorization | CAP Theorem | Distributed SystemsComprehensive benefits packageSenior-level Full TimeRemote - USA R15h ago