SOC/Incident Report Engineer
Tasks
- Build SOAR playbooks for automation
- Conduct threat hunting
- Coordinate incident response playbooks
- Evaluate cloud security posture
- Integrate data sources into SIEM
- Investigate and respond to incidents
- Investigate cloud logs and identity events
- Maintain chain of custody
- Monitor SIEM and EDR alerts
- Monitor and respond to cloud security events
- Perform digital forensics and malware triage
- Perform security alert triage
- Prepare technical and executive reports
- Tune detection rules and analytic use cases
- Use threat intelligence and MITRE ATTACK
Perks/Benefits
- Career development
- Comprehensive benefits package
- Discretionary bonus
- Diversity Equity and Inclusion
- Hybrid schedule
- Transparent leadership
- Work from home flexibility
Skills/Tech-stack
AWS | AWS CloudTrail | AWS GuardDuty | Activity logs | Audit Logs | Autopsy | Azure | Azure Activity Logs | Azure Sentinel | Chain of Custody | Cloud Security Command Center | Command Center | CrowdStrike | Defender XDR | Defender for Endpoint | Dynamic analysis | EDR | FTK | Forensics Acquisition | GCP Audit Logs | GCP audit | Google Cloud | Google Cloud Security | Google Cloud Security Command Center | KAPE | KQL | Malware analysis | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | NDR | Powershell | Python | SIEM | SOAR | Security Command Center | Splunk | Static Analysis | Threat Intelligence | Velociraptor
Education
N/A
Related jobs
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Application Security | Auditor Management | Business Continuity401k retirement plan | Employee assistance program | Equity compensation | Flexible spending accounts | Flexible time offExecutive-level Full TimeMorristown, NJ (hybrid) R6h ago
-
Senior Cloud Platform Engineer USD 180K-220KAPI Gateway | AWS | Active Directory | Agile | Ansible401k retirement plan | Continuing education program | Flexible work options | Health benefits | Paid HolidaysSenior-level Full TimeFairfax, VA10h ago
-
Senior Cloud Platform Engineer USD 180K-220KAWS | Active Directory | Ansible | CI/CD | Continuous Deployment401k retirement plan | Continuing education support | Flexible work options | Health benefits | Paid HolidaysSenior-level Full TimeSterling, VA10h ago
-
Senior Data Engineer USD 175K-215KAngular | Dashboards | Data Visualization | Microservices | NoSQLSenior-level Full TimeWashington, DC, United States13h ago
-
Junior Security Operations Center (SOC) Analyst USD 61K-77KAWS | Azure | Cloud Security | EDR | Endpoint protection401k match | Basic life insurance | Dental benefits | Flexible paid time off | Medical benefitsEntry-level Full TimeSalt Lake City, Utah, United States13h ago
-
ACAS | Access Management | Authority to Operate | Bash | Certification and accreditationMid-level Full TimeAberdeen Proving Ground, MD14h ago
-
Mid-level Full TimeHanover, MD14h ago
-
Senior-level Full TimeAnnapolis Junction, MD15h ago
-
Application Security | Composition analysis | Configuration assessment | Continuous Deployment | Continuous integrationFlexible work schedule | On-call rotations | On-the-job training | Team building exercises | WorkshopsMid-level Full TimeTexas-Austin17h ago
-
CI/CD | Capacity Planning | Disaster Recovery | Docker | ELK StackSenior-level Full TimeSan Jose, California, United States18h ago
-
Senior Enterprise Security Technical Analyst, Workspace USD 159K-231KAI Safety | Anti-abuse | Anti-abuse systems | Data Science | Machine LearningCross-functional collaboration | Global work environment | On-call rotationSenior-level Full TimeKirkland, WA, USA19h ago
-
Cyber Security Engineer USD 96K-144KAWS | Antivirus | Audit Support | Auditd | CASBMinimal travel | Remote workMid-level Full TimeRemote- United States R1d ago
-
Federal Compliance Manager USD 135K-200K800-171 | 800-53 | Amazon AWS | Authentication | Burp Suite401k plan | Commuter benefits | Fertility and family building benefits | Paid Holidays | Paid time offSenior-level Full TimeWashington, D.C.1d ago
-
Application Security Engineer USD 135K-200KApplication Testing | Black box testing | Black-box | Box testing | Code Analysis401k plan | Back Up Care Support | Basic Life AD D Disability Insurance | Commuter benefits | Fertility and family building benefitsSenior-level Full TimeSeattle, WA1d ago
-
Vice President, Information Security USD 69K-165KAmazon Web Services | Bladelogic | CVSS | Cloud Security | Cloud platformFlexible work resources | Health and wellbeing programs | Paid time off | Paid volunteer timeExecutive-level Full TimePittsburgh, PA, United States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformProfessional development | Remote work | Vendor events participationMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | Azure | CRM | CSPM | Cloud SecurityRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security USD 212K-260KAWS | CSPM | Cloud Security | Cloud Security Sales Engineering | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
API Design | AWS | Azure | CI/CD | Certificate managementBonus | Equity | Medical/Dental/VisionSenior-level Full TimeSanta Clara, California, United States1d ago
-
Security Engineer, Application Security USD 130K-500KApplication Security | Authentication Security | Authorization testing | Bug Bounty | BugcrowdEquity ownership | Fitness membership | Health insurance | Housing support | Meal stipendMid-level Full TimeSan Francisco or NYC1d ago
-
Security Engineer, Automation USD 130K-500KAPIs | AWS Secrets | AWS Secrets Manager | Active Directory | Azure Active DirectoryDaily meal stipend | Equity ownership | Fitness membership | Health insurance | Housing supportSenior-level Full TimeSan Francisco or NYC1d ago
-
Director of Information Security USD 168K-225KBash | Budgeting | Business risk | Business risk management | CASBHybrid work | Local Arizona work requirementExecutive-level Full TimeIL Chicago Office R1d ago
-
Information Security Engineer - Endpoint USD 145K-200KAccess Tokens | Active Directory | EDR | ETW | Endpoint hardening401k plan | Commuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeNew York, NY1d ago
-
Information Security Engineer - Endpoint USD 145K-200KActive Directory | Credential Guard | EDR | ETW | Endpoint hardeningCommuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeWashington, D.C.1d ago