SOC Analyst & Incident Response Lead
Tasks
- Analyze memory and disk artifacts
- Conduct malware analysis
- Conduct post-incident reviews
- Contain, eradicate, and recover from incidents
- Correlate threat intelligence with incident data
- Drive continuous process improvement
- Escalate complex security alerts
- Facilitate lessons learned workshops
- Lead incident response lifecycle
- Lead root cause and RCA reporting
- Maintain incident response documentation
- Perform digital forensic investigations
- Perform reverse engineering
- Perform root cause investigations
- Support incident triage
- Tune and optimize detection use cases
Perks/Benefits
Skills/Tech-stack
Defender for Endpoint | Detection engineering | Digital forensics | Disk forensics | EDR | Log Forensics | Malware analysis | Memory Forensics | Microsoft 365 | Microsoft Azure | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | Network Forensics | Powershell | Python | Reverse Engineering | SIEM | Scripting | Threat hunting
Education
Related jobs
-
Security Engineer USD 98K-228KAWS | Application Security | Burp Suite | Code review | CoverityEmployee benefits | Hybrid work | Remote work opportunities | Work-life balanceMid-level Full TimeRemote (US), United States R1d ago
-
Manager, Cybersecurity USD 160K-253KAWS | Access Management | Agile | Azure | Cloud SecurityEquity | Health benefitsSenior-level Full TimeUS, VA, Remote, United States R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial ML | Application Security | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAI Security | Access Control | Adversarial ML | Application Security | Application loggingRemote workSenior-level Full TimeUnited States - Remote R1d ago
-
Sr. Purple Team Operator USD 85K-150KAdversary Emulation | Adversary simulation | Adversary tools | Attack Simulation | Breach and Attack Simulation401k match | Dental insurance | Employee assistance program | Employee stock purchase plan | Health insuranceSenior-level Full TimeAK, AL, AR, AZ, CA, CO, … R2d ago
-
Embedded Intelligence Analyst USD 130K-130KCrisis management | Data Analysis | Geopolitical risk | OSINT | Protective intelligence401k matching | Dental insurance | Disability insurance | Employee assistance program | Employee discount programMid-level Full TimeSan Jose, CA, United States R3d ago
-
Security Operations Manager USD 150K-180KAutomation | CrowdStrike Falcon | Defender for Endpoint | EDR | Incident Response401k match | Birthday treat | Discretionary bonuses | Free premium dental insurance | Free premium life insuranceMid-level Full TimeRemote, US (PST) R3d ago
-
Security Senior Solution Architect- Remote from Central or Eastern time zones with travel USD 129K-180KAWS Security | Access Management | Application Security | Azure Security | CIS Controls401k match | 529 College Funding | Adoption & Surrogacy Reimbursement | Dental insurance | Education reimbursementSenior-level Full TimeRemote - United States R3d ago
-
Corporate Security Engineer, IAC & Automation USD 140K-165KAWS | Ansible | Authentication | CIS Benchmarks | Chef401k match | Flexible time off | Growth opportunities | Health benefits | Remote-friendlySenior-level Full TimeUnited States (Remote) R3d ago
-
Security Operations Engineer USD 138K-215KAzure DevOps | Bash | CloudFormation | Data Loss Prevention | Data lossEmployee assistance program | Healthcare insurance | Life insurance | Paid Company Holidays | Pension/retirement matchingSenior-level Full TimeU.S. Remote R3d ago
-
Senior DevSecOps Consultant (ArgoCD/Kubernetes/AWS) USD 132K-185K800-171 | AWS | ArgoCD | CICD | CMMC401k plan | Company holidays | Flexible work hours | Floating holidays | Paid time offSenior-level Full TimeUnited States R3d ago
-
Senior Manager - CrowdStrike Identity Architect USD 150K-200KAccess Management | Active Directory | BeyondTrust | CIS Controls | CQLSenior-level Full TimeUnited States R3d ago
-
Senior Manager - SIEM SOAR Engineer USD 150K-200KAnsible | Automation | Azure | Azure Lighthouse | Correlation rules401k matching | Accident insurance | Dental insurance | Family leave | Health insuranceSenior-level Full TimeUnited States R3d ago
-
Senior Security Engineer USD 120K-136KAlerting | CIS Critical Security | CIS Critical Security Controls | Cloud Security | Correlation rulesOn-call support | Remote work | US Security ClearanceSenior-level Full TimeWork from home, VA, United States R3d ago
-
Security Engineer USD 80K-145KAccess Management | Alerting | CIS Critical Security | CIS Critical Security Controls | Cloud SecurityOn-call support | Remote workMid-level Full TimeWork from home, VA, United States R3d ago
-
SOC Analyst USD 86K-130KAuthentication Logging | CIS Critical Security | CIS Critical Security Controls | Case management | Critical Security ControlsOn-call support | Remote work | US security clearance supportMid-level Full TimeWork from home, VA, United States R3d ago
-
SOC Analyst (SR.) USD 111K-155KAI | Authentication Monitoring | Automation | Case management | Detection engineeringOn-call support | Remote work | Security clearance supportSenior-level Full TimeWork from home, VA, United States R3d ago
-
Information Security Manager USD 140K-170K800-53 | AWS | Audit management | Azure | Cybersecurity Framework401k match | Company swag | Dental insurance | Family planning stipend | Health insuranceMid-level Full TimeDurham, NC or Washington, DC R3d ago
-
Access Control | Access Controls | Access Management | Asset Management | BashHybrid work environment | On site and home work flexibilityMid-level Full TimeBridgeton, NJ, United States R3d ago
-
Sr. Open-Source Intelligence Analyst (Hybrid) USD 80K-132KAutomated Alerts | Dashboarding | Data Visualization | Fraud Detection | Fraud typologiesContract-to-hire | Hybrid work | Travel up to 25 percent | US government clearance supportSenior-level Full TimeArlington, VA, United States R3d ago
-
Lead Cyber Security Engineer | $140K-$175K + Remote + Equity | Exciting High growth AI Operational Intelligence Startup A USD 140K-175KAPI Security | Cloud Security | Governance | ISO 27001 | ISO 42001Equity | Health medical and vision coverage | PTO | Paid Holidays | Remote workExecutive-level Full TimePhiladelphia, PA, United States R3d ago
-
Sr. Engineer- Product Abuse (Remote) USD 120K-180KAPI Security | Access Management | Account takeover | Anomaly Detection | AuthenticationCompetitive vacation and holidays | Comprehensive wellness programs | Employee networks | Follow the sun team collaboration | Great Place to Work certifiedSenior-level Full TimeUSA CA Remote, United States R4d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R4d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Authorization | Content FilteringSenior-level Full TimeUnited States - Remote R4d ago
-
AI Security Engineer USD 100K-150KAccess Control | Access Management | Adversarial ML | Application Security | Cloud Security100 percent remote | Benefits | W2 employmentSenior-level Full TimeUnited States - Remote R4d ago