JSOC - Principal Cybersecurity - Incident Response
BRL 112K-127K (estimate) Senior-level Full Time
Tasks
- Analyze threat indicators and indicators of compromise
- Build SOAR workflows
- Conduct forensic triage using disk memory and network
- Conduct tabletop exercises and incident response simulations
- Determine tactics techniques and procedures
- Develop and optimize detection rules
- Implement Detection-as-Code
- Integrate security tools using APIs
- Lead containment and eradication actions
- Lead incident response lifecycle
- Lead post-incident reviews and continuous improvement
- Maintain incident response playbooks and runbooks
- Manage SOC operational metrics
- Monitor analyze and report cybersecurity attacks
- Perform threat hunting
- Present incident response findings and recommendations
- Triage and investigate security alerts
Perks/Benefits
- Career growth and development opportunities
- Community involvement
- Health and wellbeing resources
- Hybrid work environment
- Inclusive collaborative environment
- Paid personal days
- Paid sick days
- Paid vacation
- Work-life balance
Skills/Tech-stack
API Integration | AWS | Application Firewall | Automation and response | Azure | Cloud Security | Cloud security monitoring | Content Filtering | CrowdStrike Falcon | Cybersecurity Framework | DDoS Protection | Detection and Response | Detection engineering | Detection-as-code | Disk forensics | EDR | ESQL | Elastic Security | Email Security | Endpoint Detection and Response | Endpoint detection | Event management | Firewalls | Forensics | GCP | IDS/IPS | Incident Response | JavaScript | KQL | MITRE ATT&CK | Memory Forensics | NIST Cybersecurity | NIST Cybersecurity Framework | Network Forensics | Phishing Protection | Python | SIEM | SOAR | Security Information | Security Information and Event | Security Information and Event Management | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | Security monitoring | Threat Intelligence | Threat hunting | Threat modeling | Timeline Analysis | WAF | Web Application | Web Application Firewall | “as-code”
Education
N/A
Related jobs
-
JSOC - Cybersecurity Specialist - Incident Response BRL 92K-108KAPIs | Application Firewall | Automation and response | Content Filtering | CrowdStrike FalconCareer growth and development opportunities | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid personal daysMid-level Full TimeRosario, Santa Fe Province, AR1d ago
-
API Integration | Alert triage | Application Firewall | Automation and response | Content FilteringCareer growth and development | Community involvement opportunities | Health & wellbeing programs | Hybrid work environment | Paid vacationSenior-level Full TimeRosario, Santa Fe Province, AR1d ago
-
Lead Security Engineer (AI-Native) USD 158K-237K800-171 | AI tools | AWS | Amazon IAM | Business ContinuityAI tools access | Flexible paid time off | Holiday pay | Learning membership access | Remote workSenior-level Full TimeRemote - Argentina R2d ago
-
Application Architecture | Application Security | Security Compliance | Security Documentation | Security ReportingHybrid work scheduleSenior-level Full TimeBuenos Aires, CABA, Argentina9d ago
-
Automation | Cloud Architecture | Cybersecurity | Data Analysis | GRC toolsMid-level Full TimeAAC Olivos, Argentina16d ago
-
Manager, Engineering USD 132K-214KAI | Airflow | Data Science | Distributed Systems | DockerCompetitive compensation | Comprehensive benefits | Flexible work environment | Global collaboration | Recognition programsSenior-level Full TimeCordoba, Argentina22d ago
-
Cloud Platforms | EDR | IAM | MITRE ATT&CK | Network SecurityHealth benefits | Training opportunitiesMid-level Full TimeAAC Olivos, Argentina30d ago
-
AI Governance | Cloud Security | Compliance Frameworks | Governance | Incident ManagementFlexible working hours | Home office setup budget | Learning budget | Mental health support | Paid time offSenior-level Full TimeArgentina R30d ago