Incident Response Manager & Lead Threat Hunter
Remote NOAM - Massachusetts, United States
R
USD 130K-170K Senior-level Full Time
Tasks
- Analyze adversary TTPs
- Collaborate with detection engineering to reduce risk
- Create detection rules from findings
- Define hunting workflow technical standards
- Develop threat hunting hypotheses
- Execute EDR SIEM and network traffic hunts
- Integrate threat intelligence feeds
- Lead incident response investigations
- Manage CSIRT activities
- Mentor junior analysts
- Perform containment eradication and post incident analysis
- Report findings to stakeholders
Perks/Benefits
- 401k match
- Company mentor program
- Employee referral program
- Global mental health support
- Medical/Dental/Vision
- On-demand learning and development
- Quarterly Paid Volunteer Days
- Unlimited paid time off
Skills/Tech-stack
AWS Security | AWS Security Logging | Azure Security | Azure Security Logging | Cloud Security | Cloud security monitoring | CloudTrail | Cyber Kill Chain | Detection engineering | EDR | GCP Security | GCP Security Logging | GuardDuty | Incident Response | KQL | Kill Chain | Log Analysis | Mitre Attack | Network Forensics | Network Traffic | Network Traffic Analysis | Powershell | Python | SIEM | SQL | Security Logging | Security monitoring | Threat Intelligence | Threat hunting | Traffic analysis | Wiz
Education
N/A
Related jobs
-
Automation | Azure | Cause analysis | Cloud Computing | DatabaseDisaster recovery leadership | Mentorship | Remote work | Training & developmentSenior-level Full TimeGEORGIA - VIRTUAL - GA01, United … R1d ago
-
AI triage | AWS | Application Secrets Detection | Application Security | Application Security Testing401k | Life, accident, and disability insurance | Medical, dental, and vision coverage | Paid time off | Wellness programsExecutive-level Full TimeFlorida Telecommuter, United States R1d ago
-
Lead, SDLC Security Engineering USD 143K-269KApplication Security | CI/CD | Cloud Security | Container Security | DASTBonus eligibility | Remote work option | Stock eligibilitySenior-level Full TimeUS-CA-Santa Clara, United States R1d ago
-
Investment Risk Manager - Private Assets USD 190K-215KConcentration risk | Credit Risk | Data analytics | Liquidity Risk | Portfolio analyticsEmployee stock investment plan | Health insurance | Insurance and disability benefits | Learning education assistance program | Paid time offSenior-level Full TimeUSA-NYOMA-New York, United States R1d ago
-
Chief Information Security Officer USD 260K-305KAI Governance | Audit Readiness | Awareness Training | CCPA | Cloud SecurityExecutive-level Full TimeUnited States; Remote, EST R1d ago
-
Identity Adoption Specialist USD 115K-156KAPI Keys | AWS IAM | Access Management | Active Directory | Agentic AIMid-level Full TimeRemote Canada | Remote United States R1d ago
-
Technical Automation Manager - REMOTE USD 100K-190KAI Assisted Development | AWS | Azure | CI/CD | Cloud platform401k match | Dental insurance | Medical insurance | Remote-friendly | Training opportunitiesMid-level Full TimeDallas, TX, US R1d ago
-
Technical Project Manager - Platform Architecture Team USD 130K-160KAWS | Agile | Asana | Azure | Cloud SecurityDental insurance | Health insurance | Life insurance | Long-term disability insurance | Office setup reimbursementSenior-level Full TimeNew York, NY, US R2d ago
-
Digital Product Manager - Cybersecurity & Controls USD 120K-193KAgile | Cloud Security | Cybersecurity | Cybersecurity controls | DevSecOpsComprehensive equipment setup | Connectivity reimbursement | Work from home optionMid-level Full TimeUSA - IL (Remote), United States R2d ago
-
Global Security Operations Center, Manager USD 78K-152KAccess Control | Cause analysis | Cyber Security | Incident Response | KPI TrackingMid-level Full TimeUnited States Remote Office, United States R2d ago
-
AI Security | After Action Review | Blue Team | Cloud Security | CybersecurityExecutive-level Full TimeNew Jersey Office - 210 Hudson … R2d ago
-
AWS | Access Management | Authentication | Azure | CI/CDSenior-level Full TimeRemote - US R3d ago
-
AWS | Agentic AI | Attack Vector | Attack vector analysis | AzureRemote workMid-level Full TimeMcLean, VA, United States R3d ago
-
AWS | Access Control | Active Directory | Azure | BashFamily leave | Health care plan | Paid time off | Retirement plan | Training and developmentSenior-level Full TimeUnited States - Remote R6d ago
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Audit evidence | Board reporting | Business Continuity401k retirement plan | Catered lunches | Dental insurance | Disability insurance | Employee assistance programExecutive-level Full TimeAustin, TX / Morristown, NJ (hybrid) R6d ago
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Business Continuity | Control Frameworks | Cybersecurity401k retirement plan | Dental insurance | Employee assistance program | Employer-paid life insurance | Flexible spending accountExecutive-level Full TimeMorristown, NJ / Austin, TX (hybrid) R6d ago
-
SOC Team Lead USD 118K-166KACAS | DISA VDP | Defense in Depth | Detection engineering | Event CorrelationDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offSenior-level Full TimeRemote (United States) R7d ago
-
Manager, Cybersecurity Policy, Risk & Governance USD 110K-130KBenchmarking | Change Management | Compliance | Cyber policy | CybersecurityHybrid work | Remote work | Travel up to 25 percentMid-level Full TimePittsburgh, PA, United States R7d ago
-
Access Management | Backup security | Business Continuity | Capacity Planning | Cloud connectivityHybrid work schedule | Security trainingExecutive-level Full TimeUnited States-Massachusetts-Chelsea-200 Arlington Street R7d ago
-
Connected Automotive Cybersecurity Manager USD 132K-250KAndroid | Automotive Ethernet | By Design | C# | CANAdoption reimbursement | Back-up Child Care Subsidy | Child care subsidy | Employee resource groups | Fertility treatment supportMid-level Full TimeUnited States R7d ago
-
Audit Readiness | Azure | CI/CD | CNAPP | Cloud Security401k plan | Flexible vacation policy | Hybrid work model | Medical and dental coverage | Paid HolidaysSenior-level Full TimeDallas, TX, US, 75219 R7d ago
-
AI Governance | AWS | Access Management | CI/CD | Change ManagementIn person onboarding events | Remote work flexibilityMid-level Full TimeRemote - USA R8d ago
-
Senior Manager, Security Products, IAM USD 200K-251KAWS | Access Management | Apache Flink | Apache Kafka | Application SecurityConference reimbursement | Employee assistance program | Flexible time off | LinkedIn Learning access | Local Employee MeetupsSenior-level Full TimeBoston R8d ago
-
Senior Risk Manager USD 160K-220KCounterparty risk | Crypto derivatives | Derivatives | Exposure monitoring | Funding Rate401k match | Dental insurance | Hardware setup | Health insurance | Unlimited PTOSenior-level Full TimeRemote R9d ago
-
Cybersecurity Third Party Risk Manager - Remote USD 116K-216K800-53 | Cybersecurity | GRC | Governance Risk | Governance risk compliance401k | Disability insurance | Emergency backup care | Free CEUs and professional development | Legal Resources PlanMid-level Full TimeVirginia Remote, United States R9d ago