SOC/Incident Report Engineer
Tasks
- Assess cloud security posture
- Build SOAR playbooks
- Conduct forensic acquisition and analysis
- Conduct threat hunting
- Coordinate incident response playbooks
- Document incidents and lessons learned
- Evaluate identity and access events
- Integrate data sources for SIEM
- Investigate cloud logs
- Lead incident lifecycle investigation
- Maintain chain of custody
- Map adversary tactics to MITRE ATTACK
- Monitor and respond to cloud security events
- Monitor security alerts
- Perform incident containment eradication recovery
- Perform malware triage dynamic and static
- Perform threat intelligence research
- Prepare technical and executive reports
- Triage security alerts
- Tune detection rules
Perks/Benefits
- Career development
- Comprehensive benefits
- Discretionary bonus
- Diversity Equity and Inclusion
- Hybrid schedule
- Transparent leadership
- Work from home flexibility
Skills/Tech-stack
AWS CloudTrail | AWS GuardDuty | Activity logs | Audit Logs | Autopsy | Azure Activity Logs | Azure Sentinel | CEH | CISSP | CYSA | Chain of Custody | Cloud Security Command Center | Command Center | CrowdStrike | Defender XDR | Defender for Endpoint | Digital forensics | EDR | FTK | GCP Audit Logs | GCP audit | Google Cloud | Google Cloud Security | Google Cloud Security Command Center | Incident Response | KAPE | KQL | Linux | MacOS | Malware analysis | Malware triage | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | NDR | Networking Fundamentals | Powershell | Python | SIEM | SOAR | Security Command Center | Splunk | Threat hunting | Velociraptor | Windows
Education
N/A
Related jobs
-
Senior Data Engineer USD 175K-215KAngular | Dashboards | Data Visualization | Microservices | NoSQLSenior-level Full TimeWashington, DC, United States11h ago
-
ACAS | Access Management | Authority to Operate | Bash | Certification and accreditationMid-level Full TimeAberdeen Proving Ground, MD13h ago
-
Mid-level Full TimeHanover, MD13h ago
-
Senior-level Full TimeAnnapolis Junction, MD14h ago
-
CI/CD | Capacity Planning | Disaster Recovery | Docker | ELK StackSenior-level Full TimeSan Jose, California, United States17h ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformProfessional development | Remote work | Vendor events participationMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | Azure | CRM | CSPM | Cloud SecurityRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security USD 212K-260KAWS | CSPM | Cloud Security | Cloud Security Sales Engineering | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
API Design | AWS | Azure | CI/CD | Certificate managementBonus | Equity | Medical/Dental/VisionSenior-level Full TimeSanta Clara, California, United States1d ago
-
Security Engineer, Application Security USD 130K-500KApplication Security | Authentication Security | Authorization testing | Bug Bounty | BugcrowdEquity ownership | Fitness membership | Health insurance | Housing support | Meal stipendMid-level Full TimeSan Francisco or NYC1d ago
-
Security Engineer, Automation USD 130K-500KAPIs | AWS Secrets | AWS Secrets Manager | Active Directory | Azure Active DirectoryDaily meal stipend | Equity ownership | Fitness membership | Health insurance | Housing supportSenior-level Full TimeSan Francisco or NYC1d ago
-
Security Engineer, Cloud Infrastructure USD 130K-500KAWS Identity | AWS Identity and Access Management | AWS Organizations | Access Management | Amazon Web ServicesComprehensive health insurance | Daily meal stipend | Housing support | Premium fitness membership | Relocation supportSenior-level Full TimeSan Francisco or NYC1d ago
-
Information Security Engineer - Endpoint USD 145K-200KAccess Tokens | Active Directory | EDR | ETW | Endpoint hardening401k plan | Commuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeNew York, NY1d ago
-
Information Security Engineer - Endpoint USD 145K-200KActive Directory | Credential Guard | EDR | ETW | Endpoint hardeningCommuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeWashington, D.C.1d ago
-
Cyber Data Protection Engineer (DLP Operations) USD 89K-121KAlert analysis | Audit Readiness | Compliance Evidence | Control Testing | Data Classification401k retirement savings plan | Life insurance | Long-term disability | Medical/Dental/Vision insurance | Paid caregiver leaveMid-level Full TimeWork at Home - Kentucky, United … R1d ago
-
Sr. Security Engineer, Vulnerability Management USD 112K-140KAWS | Azure | CNAPP | CSPM | CVSS401k match | Remote-first environment | Unlimited paid time offSenior-level Full TimeHome Office, United States R1d ago
-
Senior-level Full TimeIrving TX (Greenway), United States1d ago
-
Engineer - Information Security USD 67K-88KAccess Control | Access Management | Application Security Testing | Cloud Security | Data SecurityEmployee resource groups | Medical, dental, and vision insurance | Mentorship programs | Paid caregiver leave | Paid parental leaveMid-level Full TimeUSA - TX - Carrollton - …1d ago
-
Security Engineer IAM (Cyberark/Sailpoint/Okta) USD 121K-174KAccess Management | Active Directory | Application deployment | Automation | Configuration Management11 holidays | 401-K matching | Lifestyle spending account | Medical, dental, and vision insurance | Paid time offSenior-level Full TimeUS IL Chicago E. Randolph, United …1d ago
-
Sr Cyber Security Automation Engineer USD 150K-190KAWS CloudFormation | Agile | Automated testing | Bash | CI/CD401k matching | Company holidays | Daily pay | Medical/Dental/Vision insurance | Paid parental leaveSenior-level Full TimeHome Office - Virginia - DC …1d ago
-
API Gateway | API Security | API Security Top 10 | Authentication and Authorization | Authentication and Authorization Testing401k plan | Adoption reimbursement | Disability benefits | Employee assistance program | Employee discountsSenior-level Full TimeUSA:NC:Charlotte / Research Dr - Dat:9139 …1d ago
-
Application Security Engineer USD 119K-237KAI Agents | API Development | Authentication | Burp Suite | Cloud Computing401k savings | Employee assistance programs | Health and welfare benefits | Hybrid work flexibility | Inclusive work environmentMid-level Full TimeNew York - 1166, United States R1d ago
-
Cybersecurity Engineer / Security Operations Specialist (Entry Level Focus – Korean Bilingual Preferred) USD 45K-65KAccess Control | Access reviews | Business Continuity | Cybersecurity Documentation | DLPEntry-level Full TimePlymouth, MI, United States1d ago
-
Security Engineer, Application Security USD 130K-500KAPI Security | Application Security | Authentication Security | Bug Bounty | BugcrowdIn-person work model | Remote work day first FridaysMid-level Full TimeSan Francisco or NYC1d ago