SOC/Incident Report Engineer
Tasks
- Build SOAR playbooks for automation
- Conduct threat hunting
- Coordinate incident response playbooks
- Evaluate cloud security posture
- Integrate data sources into SIEM
- Investigate and respond to incidents
- Investigate cloud logs and identity events
- Maintain chain of custody
- Monitor SIEM and EDR alerts
- Monitor and respond to cloud security events
- Perform digital forensics and malware triage
- Perform security alert triage
- Prepare technical and executive reports
- Tune detection rules and analytic use cases
- Use threat intelligence and MITRE ATTACK
Perks/Benefits
- Career development
- Comprehensive benefits package
- Discretionary bonus
- Diversity Equity and Inclusion
- Hybrid schedule
- Transparent leadership
- Work from home flexibility
Skills/Tech-stack
AWS | AWS CloudTrail | AWS GuardDuty | Activity logs | Audit Logs | Autopsy | Azure | Azure Activity Logs | Azure Sentinel | Chain of Custody | Cloud Security Command Center | Command Center | CrowdStrike | Defender XDR | Defender for Endpoint | Dynamic analysis | EDR | FTK | Forensics Acquisition | GCP Audit Logs | GCP audit | Google Cloud | Google Cloud Security | Google Cloud Security Command Center | KAPE | KQL | Malware analysis | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | NDR | Powershell | Python | SIEM | SOAR | Security Command Center | Splunk | Static Analysis | Threat Intelligence | Velociraptor
Education
N/A
Related jobs
-
Senior Data Engineer USD 175K-215KAngular | Dashboards | Data Visualization | Microservices | NoSQLSenior-level Full TimeWashington, DC, United States11h ago
-
ACAS | Access Management | Authority to Operate | Bash | Certification and accreditationMid-level Full TimeAberdeen Proving Ground, MD13h ago
-
Mid-level Full TimeHanover, MD13h ago
-
Senior-level Full TimeAnnapolis Junction, MD14h ago
-
Application Security | Composition analysis | Configuration assessment | Continuous Deployment | Continuous integrationFlexible work schedule | On-call rotations | On-the-job training | Team building exercises | WorkshopsMid-level Full TimeTexas-Austin16h ago
-
CI/CD | Capacity Planning | Disaster Recovery | Docker | ELK StackSenior-level Full TimeSan Jose, California, United States17h ago
-
Senior Enterprise Security Technical Analyst, Workspace USD 159K-231KAI Safety | Anti-abuse | Anti-abuse systems | Data Science | Machine LearningCross-functional collaboration | Global work environment | On-call rotationSenior-level Full TimeKirkland, WA, USA18h ago
-
Vice President, Information Security USD 69K-165KAmazon Web Services | Bladelogic | CVSS | Cloud Security | Cloud platformFlexible work resources | Health and wellbeing programs | Paid time off | Paid volunteer timeExecutive-level Full TimePittsburgh, PA, United States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformProfessional development | Remote work | Vendor events participationMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | Azure | CRM | CSPM | Cloud SecurityRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security USD 212K-260KAWS | CSPM | Cloud Security | Cloud Security Sales Engineering | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
API Design | AWS | Azure | CI/CD | Certificate managementBonus | Equity | Medical/Dental/VisionSenior-level Full TimeSanta Clara, California, United States1d ago
-
Security Engineer, Application Security USD 130K-500KApplication Security | Authentication Security | Authorization testing | Bug Bounty | BugcrowdEquity ownership | Fitness membership | Health insurance | Housing support | Meal stipendMid-level Full TimeSan Francisco or NYC1d ago
-
Security Engineer, Automation USD 130K-500KAPIs | AWS Secrets | AWS Secrets Manager | Active Directory | Azure Active DirectoryDaily meal stipend | Equity ownership | Fitness membership | Health insurance | Housing supportSenior-level Full TimeSan Francisco or NYC1d ago
-
Director of Information Security USD 168K-225KBash | Budgeting | Business risk | Business risk management | CASBHybrid work | Local Arizona work requirementExecutive-level Full TimeIL Chicago Office R1d ago
-
Information Security Engineer - Endpoint USD 145K-200KAccess Tokens | Active Directory | EDR | ETW | Endpoint hardening401k plan | Commuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeNew York, NY1d ago
-
Information Security Engineer - Endpoint USD 145K-200KActive Directory | Credential Guard | EDR | ETW | Endpoint hardeningCommuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeWashington, D.C.1d ago
-
Cyber Data Protection Engineer (DLP Operations) USD 89K-121KAlert analysis | Audit Readiness | Compliance Evidence | Control Testing | Data Classification401k retirement savings plan | Life insurance | Long-term disability | Medical/Dental/Vision insurance | Paid caregiver leaveMid-level Full TimeWork at Home - Kentucky, United … R1d ago
-
Sr. Security Engineer, Vulnerability Management USD 112K-140KAWS | Azure | CNAPP | CSPM | CVSS401k match | Remote-first environment | Unlimited paid time offSenior-level Full TimeHome Office, United States R1d ago
-
Senior-level Full TimeIrving TX (Greenway), United States1d ago
-
Engineer - Information Security USD 67K-88KAccess Control | Access Management | Application Security Testing | Cloud Security | Data SecurityEmployee resource groups | Medical, dental, and vision insurance | Mentorship programs | Paid caregiver leave | Paid parental leaveMid-level Full TimeUSA - TX - Carrollton - …1d ago
-
Sr Cyber Security Automation Engineer USD 150K-190KAWS CloudFormation | Agile | Automated testing | Bash | CI/CD401k matching | Company holidays | Daily pay | Medical/Dental/Vision insurance | Paid parental leaveSenior-level Full TimeHome Office - Virginia - DC …1d ago
-
API Gateway | API Security | API Security Top 10 | Authentication and Authorization | Authentication and Authorization Testing401k plan | Adoption reimbursement | Disability benefits | Employee assistance program | Employee discountsSenior-level Full TimeUSA:NC:Charlotte / Research Dr - Dat:9139 …1d ago
-
Application Security Engineer USD 119K-237KAI Agents | API Development | Authentication | Burp Suite | Cloud Computing401k savings | Employee assistance programs | Health and welfare benefits | Hybrid work flexibility | Inclusive work environmentMid-level Full TimeNew York - 1166, United States R1d ago