SOC Analyst & Incident Response Lead
Tasks
- Conduct malware analysis
- Conduct post-incident reviews
- Contain eradicate and recover incidents
- Coordinate with CSIRT and stakeholders
- Correlate threat intelligence with incidents
- Develop and tune detection use cases
- Drive SOC and IR process improvements
- Escalate complex security alerts
- Lead incident response lifecycle
- Maintain incident response documentation
- Maintain security tool suite
- Perform digital forensic investigations
- Perform memory and disk analysis
- Perform root cause investigations
- Prepare executive incident reporting
Perks/Benefits
- N/A
Skills/Tech-stack
Azure | Defender for Endpoint | Detection engineering | Digital forensics | Disk forensics | Dynamics 365 | EDR | Incident Response | Log Forensics | MITRE ATT&CK | Malware analysis | Memory Forensics | Microsoft 365 | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Dynamics | Microsoft Dynamics 365 | Microsoft Sentinel | Network Forensics | Powershell | Python | Reverse Engineering | SIEM | Scripting | Security Automation | Threat Intelligence | Threat hunting
Education
Related jobs
-
Security Engineer - Vuln Management (Code) USD 210K-270KApplication Security | CI/CD | CVSS | DevSecOps | Exploitability assessment401k match | Autonomous work environment | Commuter benefits | Dental insurance | Flexible time offMid-level Full TimeFoster City, CA12h ago
-
Cybersecurity Engineer USD 123K-166K800-53 | ACAS | AWS | Access Control | Agile401k retirement plan | Company stock options | Conference reimbursement | Dental insurance | Disability insuranceMid-level Full TimeUnited States - Remote R12h ago
-
Principal Security Engineer, Privy USD 273K-410KAPI Security | AWS | Access Control | Application Security | Authentication401k plan | Company bonus | Equity | Medical insurance | Sales commissionsSenior-level Full TimeNYC-Privy13h ago
-
Principal Detection and Response Engineer USD 295K-345KAmazon Athena | Apache Flink | Apache Kafka | Apache Spark | C#Equity compensation | Health benefits | Hybrid work environment | On-call rotationSenior-level Full TimeSan Mateo, CA, United States R14h ago
-
Active Directory | Azure Active Directory | Conditional Access | Duo | Entra IDDental insurance | Flexible time off | Home internet allowance | Medical insurance | Mobile phone allowanceSenior-level Full TimeRemote R14h ago
-
Information Security Systems Engineer USD 133K-240K800-171 | 800-53 | Access Management | CI/CD | CI/CD Security401k match | Dental insurance | Disability insurance | Dog-friendly offices | EquityMid-level Full TimeKent, Washington15h ago
-
Security Communications Systems Architect USD 146K-194K5G | AES 256 | Dial Plan | Encryption | Event managementHealth benefits | Paid time off | Recovery Benefits | Security clearance sponsorshipSenior-level Full TimeWashington, District of Columbia, United States15h ago
-
Security Communications Systems Architect USD 113K-149K5G | AES 256 | Dial Plan | Event management | FCC Part 90Senior-level Full TimeAshville, Ohio, United States15h ago
-
Embedded Protective Intelligence Analyst USD 93K-130KDatabase Management | Incident Response | Intelligence Monitoring | OSINT | Professional judgment401k matching | Dental insurance | Dependent care spending account | Employee assistance program | Flexible spending accountMid-level Full TimeRemote, USA, United States R15h ago
-
AI Security Solutions Architect USD 160K-200KAWS | Amazon RDS | Cloud Computing | Go | Integration developmentSenior-level Full TimePhiladelphia, Pennsylvania, United States15h ago
-
Senior-level Full TimeCharlotte, North Carolina, United States15h ago
-
AI Security Solutions Architect USD 160K-200KAWS | Amazon RDS | Go | Integration Engineering | KubernetesSenior-level Full TimeBoston, Massachusetts, United States15h ago
-
Lead Security Engineer, Enterprise Security USD 175K-262KAWS | AWS IAM | Access Management | CNAPP | Cloud SecuritySenior-level Full TimeDenver, CO16h ago
-
Lead Security Engineer, Enterprise Security USD 175K-262KAI tools | AWS | AWS IAM | Access Management | Access policiesSenior-level Full TimeBoston, MA16h ago
-
Information Security Analyst USD 87K-115KAccess Control | Access Management | Antivirus | Detection Systems | Endpoint SecurityMid-level Full TimeJacksonville, Florida, United States16h ago
-
Cybersecurity Risk Analyst USD 76K-115KCloud Security | Data Protection | Governance Risk | Governance risk compliance | HIPAACareer advancement opportunities | Employee wellness programs | Flexible work schedules | Health, dental, and vision insurance | Paid time offMid-level Full TimeEvansville, Indiana, United States17h ago
-
Senior Vulnerability Management Engineer USD 161K-189KApplication Security Testing | Bash | Checkmarx | Cloud Architecture | Cloud SecurityHybrid work model | Mental health counseling | Paid parental leave | Paid time off | Subsidized Wellhub membershipSenior-level Full TimeNew York, US, New York17h ago
-
Senior Vulnerability Management Engineer USD 165K-204KApplication Security Testing | Bash | CSPM | Checkmarx | Cloud ArchitectureHybrid work model | Learning platform access | Mental health counseling | Mentorship programs | Paid volunteer timeSenior-level Full TimeRaleigh, US, North Carolina17h ago
-
Cyber Threat Intelligence Analyst USD 133K-184KAPT | Cyber Threat | Cyber Threat Intelligence | Dark Web | ICD 106Hybrid workSenior-level Full TimeArlington, VA18h ago
-
Access Security Operations Center - Manager USD 87K-87KAccess Control | Alarm systems | Camera systems | Database Query | Emergency responseMid-level Full TimeMiami, FL, United States18h ago
-
Splunk Architect Lead USD 131K-216KBackup | Capacity Planning | Case management | Case management tools | Change ManagementSenior-level Full TimePortland, OR, United States18h ago
-
Senior Splunk Engineer USD 146K-219KAccess Control | Alerting | Dashboards | Data Ingestion | Data ModelSenior-level Full TimePortland, OR, United States18h ago
-
SOC Tier 2 Analyst USD 85K-104KAccess Management | Alert triage | Application Security | Cloud Security | Correlation rulesMid-level Full TimePortland, OR, United States18h ago
-
SOC Tier 3 Analyst USD 120K-140KAlert Logic | Case management | Cloud Security | Correlation rules | DashboardsSenior-level Full TimePortland, OR, United States18h ago
-
Security Engineer USD 125K-178KAccess Management | Automation | CIS Controls | Cloud Security | Configuration ManagementSenior-level Full TimePortland, OR, United States18h ago