JSOC - Principal Cybersecurity - Incident Response
BRL 112K-127K (estimate) Senior-level Full Time
Tasks
- Analyze threat indicators and indicators of compromise
- Build SOAR workflows
- Conduct forensic triage using disk memory and network
- Conduct tabletop exercises and incident response simulations
- Determine tactics techniques and procedures
- Develop and optimize detection rules
- Implement Detection-as-Code
- Integrate security tools using APIs
- Lead containment and eradication actions
- Lead incident response lifecycle
- Lead post-incident reviews and continuous improvement
- Maintain incident response playbooks and runbooks
- Manage SOC operational metrics
- Monitor analyze and report cybersecurity attacks
- Perform threat hunting
- Present incident response findings and recommendations
- Triage and investigate security alerts
Perks/Benefits
- Career growth and development opportunities
- Community involvement
- Health and wellbeing resources
- Hybrid work environment
- Inclusive collaborative environment
- Paid personal days
- Paid sick days
- Paid vacation
- Work-life balance
Skills/Tech-stack
API Integration | AWS | Application Firewall | Automation and response | Azure | Cloud Security | Cloud security monitoring | Content Filtering | CrowdStrike Falcon | Cybersecurity Framework | DDoS Protection | Detection and Response | Detection engineering | Detection-as-code | Disk forensics | EDR | ESQL | Elastic Security | Email Security | Endpoint Detection and Response | Endpoint detection | Event management | Firewalls | Forensics | GCP | IDS/IPS | Incident Response | JavaScript | KQL | MITRE ATT&CK | Memory Forensics | NIST Cybersecurity | NIST Cybersecurity Framework | Network Forensics | Phishing Protection | Python | SIEM | SOAR | Security Information | Security Information and Event | Security Information and Event Management | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | Security monitoring | Threat Intelligence | Threat hunting | Threat modeling | Timeline Analysis | WAF | Web Application | Web Application Firewall | “as-code”
Education
N/A
Related jobs
-
Senior Information Security Generalist - Automation USD 77K-202KAmazon Web Services | Ansible | Artificial Intelligence | Azure Pipelines | CybersecurityProfessional bilingual English | Remote workSenior-level Full TimeBuenos Aires, Argentina7d ago
-
Cybersecurity Shift Lead [US Client] USD 77K-202KAccess Governance | Amazon Web Services | Azure | Bash | Cloud platformSenior-level Full TimeAAC Olivos, Argentina9d ago
-
800-82 | 8021X | Armis | CIS Controls | CiscoSenior-level Full TimeAAC Olivos, Argentina13d ago
-
JSOC - Principal SIEM Engineer BRL 112K-129KAWS | Apache Kafka | Bash | Beats | CI/CDCareer growth and development | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid vacationSenior-level Full TimeRosario, Santa Fe Province, AR15d ago
-
JSOC - Cybersecurity Specialist - Incident Response BRL 92K-108KAPIs | Application Firewall | Automation and response | Content Filtering | CrowdStrike FalconCareer growth and development opportunities | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid personal daysMid-level Full TimeRosario, Santa Fe Province, AR21d ago
-
API Integration | Alert triage | Application Firewall | Automation and response | Content FilteringCareer growth and development | Community involvement opportunities | Health & wellbeing programs | Hybrid work environment | Paid vacationSenior-level Full TimeRosario, Santa Fe Province, AR21d ago
-
Application Architecture | Application Security | Security Compliance | Security Documentation | Security ReportingHybrid work scheduleSenior-level Full TimeBuenos Aires, CABA, Argentina29d ago
-
Automation | Cloud Architecture | Cybersecurity | Data Analysis | GRC toolsMid-level Full TimeAAC Olivos, Argentina1mo ago
-
Manager, Engineering USD 132K-214KAI | Airflow | Data Science | Distributed Systems | DockerCompetitive compensation | Comprehensive benefits | Flexible work environment | Global collaboration | Recognition programsSenior-level Full TimeCordoba, Argentina1mo ago
-
Cloud Platforms | EDR | IAM | MITRE ATT&CK | Network SecurityHealth benefits | Training opportunitiesMid-level Full TimeAAC Olivos, Argentina1mo ago
-
AI Governance | Cloud Security | Compliance Frameworks | Governance | Incident ManagementFlexible working hours | Home office setup budget | Learning budget | Mental health support | Paid time offSenior-level Full TimeArgentina R1mo ago