Cyber Automation
Tasks
- Administer Microsoft Sentinel and Microsoft Defender tools
- Analyze logs and telemetry
- Automate incident response workflows
- Collaborate on patch compliance validation
- Collect evidence for audits
- Conduct threat hunting
- Deliver executive threat and vulnerability reports
- Develop Sentinel workbooks and KQL queries
- Document incident response and root cause analysis
- Escalate and support incident containment
- Identify indicators of compromise
- Integrate alerts with ServiceNow
- Maintain asset inventories and patch metrics
- Monitor security alerts
- Monitor vulnerability management dashboards
- Perform incident triage and investigation
- Produce daily weekly SOC summaries and trend reports
- Provide input to System Security Plan controls
- Recommend improvements to SOC processes
- Support CMMC Level 2 and NIST 800-171 compliance
- Support vulnerability scans and remediation tracking
- Tune detections and correlation rules
- Update incident response plans and security documentation
Perks/Benefits
- Company-Paid Holidays
- Employee assistance programs
- Life and disability insurance
- Medical, dental, and vision coverage
- Paid time off
- Retirement savings plan
Skills/Tech-stack
800-171 | Active Directory | Azure Government | Azure Virtual | Azure Virtual Desktop | CMMC | Conditional Access | Defender Vulnerability Management | Defender for Cloud | Defender for Endpoint | Defender for Identity | Entra ID | Event management | FedRAMP High | GCC-High | Incident Response | Intune | KQL | Logic Apps | M365 GCC | M365 GCC High | Microsoft Defender | Microsoft Defender Vulnerability Management | Microsoft Defender for Cloud | Microsoft Defender for Endpoint | Microsoft Defender for Identity | Microsoft Entra | Microsoft Entra ID | Microsoft Sentinel | NIST SP | NIST SP 800 | NIST SP 800-171 | POA&M | Patch Management | Powershell | SIEM | SP 800-171 | Security Information | Security Information and Event | Security Information and Event Management | ServiceNow | Threat hunting | Virtual Desktop | Vulnerability Management | Windows 365
Related jobs
-
Cyber-Security Analyst (Night Shift) - IS-Security USD 78K-104KAntivirus | C# | C++ | Cybersecurity Framework | DHCPNight shift SOC operations | Remote workMid-level Full TimeUnited States-Texas-Galveston1d ago
-
Insider Threat Detection Engineer USD 190K-260KAI | Computer forensics | Detection and Response | Endpoint Detection and Response | Endpoint detection401k match | Dental insurance | Life insurance | Medical insurance | Paid HolidaysMid-level Full TimeNew York1d ago
-
Security Engineer, Wearables (RL) USD 177K-251KAI Automation | AWS | Agent Orchestration | C# | C++Senior-level Full TimeBurlingame, CA1d ago
-
Associate Security Analyst, Agentic Security Operations USD 102K-145KAI Security | AI Security Assistant | API Integration | Deobfuscation | Detection and ResponseMid-level Full TimeTexas, USA; United States1d ago
-
Network Automation | Network Security | Network routing | Risk Management | Security ArchitectureSenior-level Full TimeAustin, TX, USA; Sunnyvale, CA, USA1d ago
-
Director, Security Architecture & Engineering USD 132K-224KAPI Security | Access Control | Application Security | CIS Controls | Cloud Native401k match | Career advancement opportunities | Employee resource groups | Flexible PTO | Flexible work environmentSenior-level Full TimeMorrisville, NC, US, 275601d ago
-
Director, Security Operations USD 180K-250KAlert Tuning | Automation | CIS Controls | Case management | Cause analysis401k match | Conference attendance support | Employee resource groups | Flexible PTO | Flexible work environmentExecutive-level Full TimeMorrisville, NC, US, 275601d ago
-
Principal Security Engineer, Infrastructure Security USD 190K-263KAWS | CI/CD | Cloud IAM | Cloud Security | Cloud Security PostureSenior-level Full TimeUnited States | Remote R2d ago
-
Security Analyst USD 80K-110KAuthentication logs | CrowdStrike | Detection and Response | EDR Testing | Endpoint Detection and Response401k match | Company events | Gym membership stipend | Medical, dental & vision coverage | Paid HolidaysMid-level Full TimeColumbia, MO (Headquarters)2d ago
-
800-53 | Control Assessment | Cybersecurity | Cybersecurity Framework | Enterprise AssessmentsRemote work | Travel within FloridaSenior-level Full TimeFlorida, United States2d ago
-
800-53 | Compliance review | Control Evaluation | Cybersecurity Risk Assessment | Cybersecurity riskContract project based employment | Remote workMid-level Full TimeMiami, FL, United States2d ago
-
Antivirus | CIS Controls | Detection Systems | Digital forensics | Email Security401k plan | Dental insurance | Medical insurance | Professional growth | Vision insuranceMid-level Full TimeLancaster, PA, US R2d ago
-
Sr Lead Security Engineer - Workforce USD 177K-215KAWS | Access Management | Ansible | Azure | BitbucketBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersSenior-level Full TimeWilmington, DE, United States2d ago
-
Principal Security Engineer USD 118K-173K800-53 | Access Control | Authority to Operate | CVE Analysis | Continuous MonitoringSenior-level Full TimeColumbia, MD or Herndon, VA2d ago
-
SOC Analyst USD 61K-100KCrowdStrike | IBM QRadar | Incident Response | Malware analysis | Microsoft SentinelEntry-level Full TimeLas Vegas, NV, United States2d ago
-
AMAG Symmetry | Crisis coordination | Crisis management | Decision Making | EverbridgeDaily earned wage access | Dental coverage | Disability insurance | Discount program | Employee assistance programMid-level Full TimePoughkeepsie, NY, United States2d ago
-
Security Engineer, Bridge USD 229K-343KAccess Control | Audit compliance | CI/CD | Incident Response | Secrets management401k plan | Company bonus | Equity | Medical, dental, vision benefits | Sales commissionsSenior-level Full TimeSF, New York, Seattle, Dublin2d ago
-
Senior Application Security Engineer (Remote) USD 192K-240KAWS | Application Security Testing | Bug Bounty | Code review | Design reviewLearning sessions | Mentorship | Remote workSenior-level Full TimeUnited States R2d ago
-
Cyber Systems Engineer USD 185K-200KACAS | Active Directory | Ansible | Automation Pipelines | CI/CD401k matching | Bereavement leave | Employee assistance program | Employee discount program | Health and dental insuranceSenior-level Full TimeSan Diego, CA, United States2d ago
-
IT Security Analyst II USD 78K-108K365 Security | Access Management | Audit evidence | Awareness Training | Conditional AccessMid-level Full TimeHouston, TX, United States2d ago
-
Senior Penetration Tester USD 124K-163KApplication Security | Cybersecurity frameworks | Network Protocols | Network Security | Penetration TestingCareer advancement | Dental insurance | Health insurance | Professional development | Retirement planSenior-level Full TimeDenver, Colorado2d ago
-
SME Penetration Tester USD 144K-187KAdvanced scripting | Application Security | Network Protocols | Network Security | Penetration TestingCareer advancement | Dental insurance | Health insurance | Inclusive work environment | Professional developmentEntry-level Full TimeDenver, Colorado2d ago
-
Distinguished Engineer, End-to-End Security Architect USD 198K-279KAPI Security | Access Control | Access Management | Certificate Lifecycle Management | Certificate lifecycle401k retirement plan | Commuter benefits | Disability insurance | Employee assistance programme | Flexible spending accountsSenior-level Full TimeAustin, Texas, United States; US - …2d ago
-
Junior Penetration Tester USD 79K-108KNetwork Security | Penetration Testing | Reconnaissance | Red Teaming | ScriptingDental insurance | Health insurance | Professional development | Retirement plansEntry-level Full TimeDenver, Colorado2d ago
-
VP, Security Engineer USD 200K-260KAI Security | API Integration | Access Management | Bash | Cause analysisExecutive-level Full TimeNew York, NY2d ago