JSOC - Principal Cybersecurity - Incident Response
Tasks
- Analyze malicious activity tactics techniques and procedures
- Analyze threat indicators
- Build and improve detection strategy
- Conduct threat hunting
- Contain and eradicate incidents
- Define and report SOC operational metrics
- Develop detection rules
- Gather indicators of compromise
- Implement Detection-as-Code
- Implement SOAR workflows
- Integrate security tools via APIs for automation
- Lead incident response lifecycle
- Lead post-incident reviews
- Maintain SOC incident response playbooks and runbooks
- Mentor SOC team
- Monitor analyze and report cyber attacks
- Perform forensic triage
- Recover from security incidents
- Run tabletop exercises and simulations
- Triage and investigate security alerts
Perks/Benefits
- Career growth and development
- Community involvement
- Health and wellbeing resources
- Paid vacation
- Personal days
- Sick days
- Work-life balance
Skills/Tech-stack
API Integration | AWS | Automation | Azure | Cloud Security | Content Filtering | CrowdStrike Falcon | Cybersecurity Framework | DDoS | Detection engineering | Detection-as-code | Disk forensics | EDR | ESQL | Elastic | Elastic Security | Firewalls | Forensic triage | GCP | IDS/IPS | Incident Response | JavaScript | KQL | MITRE ATT and CK | Memory Forensics | NIST Cybersecurity | NIST Cybersecurity Framework | Network Forensics | Phishing Protection | Python | SIEM | SOAR | Threat Intelligence | Threat hunting | Threat modeling | Timeline Analysis | WAF | “as-code”
Education
N/A
Related jobs
-
API Security | Artificial Intelligence | CD pipelines | CI/CD | CI/CD pipelinesChildcare assistance | Dental insurance | Gympass | Health program | Life insuranceEntry-level Full TimeSANTANDER RADAR BL A 2 AND, …5d ago
-
Information Security Third Party Risk Specialist - SAP SAP Global Security and Cloud Compliance BRL 138K-162KApplication Security | Cloud Security | Cyber Security | ISO 27001 | ISO 27017Constant learning | Flexible working models | Health and wellbeing support | Skill growthMid-level Full TimeSão Leopoldo, BR, 93022-7189d ago
-
JSOC - Principal SIEM Engineer BRL 120K-138KAWS | Apache Kafka | Bash | Beats | CI/CDCareer growth opportunities | Community causes opportunities | Health & wellbeing resources | Hybrid working environment | Inclusive collaborative environmentSenior-level Full TimeBrazil15d ago
-
Automation | Brand Protection | Credential harvesting | DNS | Dark WebCareer growth and development | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid sick daysMid-level Full TimeBrazil15d ago
-
JSOC - Cybersecurity Specialist - Incident Response BRL 80K-100KAPI Integration | Alert triage | Application Firewall | Automation and response | Content FilteringCareer growth opportunities | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Inclusive collaborative environmentMid-level Full TimeBrazil21d ago
-
API Integration | Application Firewall | Automation | Content Filtering | Correlation rulesCareer growth and development | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid vacationSenior-level Full TimeBrazil21d ago
-
Cloud Security | Compliance Audits | IT Audit | Information security | Operational ResilienceSenior-level Full TimeSão Paulo, State of São Paulo, …22d ago
-
Cyber Security Specialist | AppSec BRL 129K-129K.NET | API Security | AWS Secrets | AWS Secrets Manager | Application SecurityAdditional day off | Education support | Flexible work hours | Health and dental benefits | Language classesSenior-level Full TimeCuritiba | On-site1mo ago
-
Lead Database Security BRL 304K-370KCloud Security | Database security | IBM Guardium | SQL | Threat modelingSenior-level Full TimeBR001 São José dos Campos, Brazil1mo ago
-
Analytical Skills | Automation | Communication | Cybersecurity | ISO 27001Childcare assistance | Dental insurance | Gympass | Life insurance | Meal allowanceEntry-level Full TimeSANTANDER RADAR BL A 2 AND, …1mo ago
-
Audit | Cloud Security | Compliance Frameworks | Incident Management | Regulatory StandardsCoworking budget | Flexible working hours | Fully remote work | Home office setup | Learning budgetSenior-level Full TimeBrazil R1mo ago