JSOC - Principal Cybersecurity - Incident Response
Tasks
- Analyze malicious activity tactics techniques and procedures
- Analyze threat indicators
- Build and improve detection strategy
- Conduct threat hunting
- Contain and eradicate incidents
- Define and report SOC operational metrics
- Develop detection rules
- Gather indicators of compromise
- Implement Detection-as-Code
- Implement SOAR workflows
- Integrate security tools via APIs for automation
- Lead incident response lifecycle
- Lead post-incident reviews
- Maintain SOC incident response playbooks and runbooks
- Mentor SOC team
- Monitor analyze and report cyber attacks
- Perform forensic triage
- Recover from security incidents
- Run tabletop exercises and simulations
- Triage and investigate security alerts
Perks/Benefits
- Career growth and development
- Community involvement
- Health and wellbeing resources
- Paid vacation
- Personal days
- Sick days
- Work-life balance
Skills/Tech-stack
API Integration | AWS | Automation | Azure | Cloud Security | Content Filtering | CrowdStrike Falcon | Cybersecurity Framework | DDoS | Detection engineering | Detection-as-code | Disk forensics | EDR | ESQL | Elastic | Elastic Security | Firewalls | Forensic triage | GCP | IDS/IPS | Incident Response | JavaScript | KQL | MITRE ATT and CK | Memory Forensics | NIST Cybersecurity | NIST Cybersecurity Framework | Network Forensics | Phishing Protection | Python | SIEM | SOAR | Threat Intelligence | Threat hunting | Threat modeling | Timeline Analysis | WAF | “as-code”
Education
N/A
Related jobs
-
JSOC - Cybersecurity Specialist - Incident Response BRL 80K-100KAPI Integration | Alert triage | Application Firewall | Automation and response | Content FilteringCareer growth opportunities | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Inclusive collaborative environmentMid-level Full TimeBrazil1d ago
-
API Integration | Application Firewall | Automation | Content Filtering | Correlation rulesCareer growth and development | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid vacationSenior-level Full TimeBrazil1d ago
-
Cloud Security | Compliance Audits | IT Audit | Information security | Operational ResilienceSenior-level Full TimeSão Paulo, State of São Paulo, …2d ago
-
Principal, Database Security Engineering BRL 305K-396KAccess Management | Activity monitoring | CI/CD | CIS Benchmarks | Cloud SecuritySenior-level Full TimeBR031 São Paulo, Brazil13d ago
-
Vulnerability Management Senior Advisor BRL 116K-132KAutomation Scripting | DevOps | Process Management | Security Analysis | Security Process ManagementCareer development opportunities | Inclusive environmentSenior-level Full TimeEldorado Do Sul, Brazil20d ago
-
Cyber Security Specialist | AppSec BRL 129K-129K.NET | API Security | AWS Secrets | AWS Secrets Manager | Application SecurityAdditional day off | Education support | Flexible work hours | Health and dental benefits | Language classesSenior-level Full TimeCuritiba | On-site22d ago
-
Lead Database Security BRL 304K-370KCloud Security | Database security | IBM Guardium | SQL | Threat modelingSenior-level Full TimeBR001 São José dos Campos, Brazil28d ago
-
InfoSec Architecture/Cloud Specialist BRL 180K-214KARM | AWS | Azure | Azure Policy | BicepCollaborative culture | Flexible working | Global team environment | Training opportunitiesSenior-level Full TimeContagem, BR, 32210-05029d ago
-
Analytical Skills | Automation | Communication | Cybersecurity | ISO 27001Childcare assistance | Dental insurance | Gympass | Life insurance | Meal allowanceEntry-level Full TimeSANTANDER RADAR BL A 2 AND, …30d ago
-
Audit | Cloud Security | Compliance Frameworks | Incident Management | Regulatory StandardsCoworking budget | Flexible working hours | Fully remote work | Home office setup | Learning budgetSenior-level Full TimeBrazil R30d ago
-
ETM Sales Specialist BRL 129K-129KAI | Business Consulting | Cloud Security | Cybersecurity | Executive CommunicationSenior-level Full TimeBrazil1mo ago