Security Engineer - Operations / Incident Response
Tasks
- Build SOAR automations
- Contain eradicate recover incidents
- Deploy and tune EDR policies
- Develop SIEM detections
- Execute email takedowns
- Ingest SaaS audit logs into detection coverage
- Integrate AI into security workflows
- Integrate identity telemetry into detections
- Investigate phishing
- Lead incident response triage
- Maintain on call runbooks and severity definitions
- Measure detection performance
- Monitor internal AI usage
- Provide cloud detection coverage
- Run EDR response playbooks
- Run tabletop exercises
- Tune detection noise
- Version detections in code
- Write incident post mortems
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | Audit Logs | Automation | Azure | Chronicle | Cloud Security | Cloud Security Telemetry | CrowdStrike | Defender for Endpoint | Detection engineering | EDR | Elastic | Email Security | Email Takedown | GCP | Git | Identity telemetry | Incident Response | Microsoft Defender | Microsoft Defender for Endpoint | OAuth | Panther | Phishing | Python | SIEM | SOAR | SaaS audit logs | Scripting | Security operations | Security telemetry | SentinelOne | Splunk
Education
N/A
Roles
Engineer | Security | Security Engineer | Senior Security Engineer
Related jobs
-
Cloud Security | DLP | EDR | Firewalls | Information securityHealthcare benefits | Paid time off | Professional development | Tuition reimbursement | Wellness benefitsMid-level Full TimePH-National Capital-Pasay City, Metro Manila R12h ago
-
Anti-virus | Authentication | CRM | Cloud Security | EncryptionCollaborative work environment | Training and developmentMid-level Full TimeSweden R13h ago
-
Anssi | Azure | CNAPP | CSPM | Cloud SecurityHealth insurance | Meal vouchers | Work from homeEntry-level Full TimeParis, IDF, France R16h ago
-
AWS | Ansible | Azure | Azure Sentinel | CentreonEmployee representative council | Health insurance | Meal vouchers | Profit sharing | Referral bonusSenior-level Full TimeRennes, Bretagne, France R17h ago
-
ITSO/Consultant Specialist INR 2092K-3500KAccess Control | Agile | Application Security | CD pipelines | CI PipelinesFlexible working | Professional developmentSenior-level Full TimePune, Maharashtra, India R18h ago
-
Mid-level Full TimeRemote - Singapore R19h ago
-
API | AWS | Authentication | Authorization | AzureExposure to international clients | Training and professional developmentMid-level Full TimeSwitzerland - Remote R1d ago
-
Amazon Web Services | Apache Cassandra | Apache Kafka | CI/CD | Code reviewAdoption leave | Competitive vacation and holidays | Paid parental leave | Professional development | Volunteer opportunitiesSenior-level Full TimeBucharest, Romania R1d ago
-
AWS CDK | Alloy | Amazon IAM | Amazon S3 | Amazon SQSAnnual leave | Career growth sessions | Company share scheme | Extended health dental and travel insurances | Flexible benefitsSenior-level Full TimeCluj-Napoca, Romania R1d ago
-
API Gateway | API Security | AWS | Access Control | Access ManagementAnnual leave | Career growth sessions | Company share scheme | Dental insurance | Flexible benefitsSenior-level Full TimeCluj-Napoca, Romania R1d ago
-
Concierge Security Engineer 3 AUD 93K-256KActive Directory | Antivirus | Attack Simulation | Authentication | BashComprehensive private benefits plan | Employee assistance program | Equity | Fertility support | Flexible time offMid-level Full TimeRemote - AUS - Western Australia R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Architecture Review | AuthenticationBenefits | Career growth | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KAccess Management | Bash | CIS Benchmarks | CIS Controls | Cloud GuardMid-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Cloud Security | Content filters | CryptographySenior-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial ML | Application Security | Authorization | Cloud SecurityCareer growth | Equal opportunity employer | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Bot Protection | CI/CDBenefits package | Career growth | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud infrastructure | Data SafeCareer growth | Health benefits | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | Cloud Guard | Cloud infrastructure | Data Safe | Data discoveryMid-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud infrastructure | Data SafeMid-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Authorization | Cloud SecuritySenior-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Authentication | Authorization | Bot ProtectionMid-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R1d ago