SOC/Incident Report Engineer
Columbus, OH, USA, 43215
USD 100K-139K (estimate) Senior-level Full Time
Tasks
- Analyze endpoint artifacts
- Assess cloud security posture
- Build incident response playbooks
- Conduct post-incident analysis
- Contain and eradicate threats
- Create cloud detection logic
- Integrate log ingestion pipelines
- Investigate cloud logs
- Investigate security incidents
- Maintain SOAR workflows
- Maintain chain of custody
- Map adversary TTPs to MITRE ATTACK
- Monitor SIEM alerts
- Monitor cloud security events
- Perform alert triage
- Perform forensic acquisition
- Perform malware triage
- Perform threat hunting
- Prepare technical and executive reports
- Recover from incidents
- Research threats vulnerabilities and malware
- Support audit compliance and regulatory requirements
- Tune detection rules
- Use threat intelligence
Perks/Benefits
- Career development and growth
- Diversity Equity and Inclusion
- Hybrid schedule
- Transparent and visible leadership
- Work from home flexibility
Skills/Tech-stack
AWS CloudTrail | AWS GuardDuty | Activity logs | Audit Logs | Autopsy | Azure Activity Logs | Azure Sentinel | Cloud Security | Cloud Security Command Center | Command Center | CrowdStrike | Defender XDR | Defender for Cloud | Defender for Endpoint | Digital forensics | Dynamic analysis | EDR | FTK | GCP Audit Logs | GCP audit | Google Cloud | Google Cloud Security | Google Cloud Security Command Center | Identity Systems | Incident Response | KAPE | KQL | Linux | MacOS | Malware analysis | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Cloud | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | NDR | Network Forensics | Operating System | Operating system internals | Powershell | Python | SIEM | SOAR | Scripting | Security Command Center | Splunk | Static Analysis | System internals | Threat hunting | Velociraptor | Windows
Education
N/A
Related jobs
-
Senior Data Engineer USD 175K-215KAngular | Dashboards | Data Visualization | Microservices | NoSQLSenior-level Full TimeWashington, DC, United States9h ago
-
ACAS | Access Management | Authority to Operate | Bash | Certification and accreditationMid-level Full TimeAberdeen Proving Ground, MD10h ago
-
Mid-level Full TimeHanover, MD11h ago
-
Senior-level Full TimeAnnapolis Junction, MD11h ago
-
Application Security | Composition analysis | Configuration assessment | Continuous Deployment | Continuous integrationFlexible work schedule | On-call rotations | On-the-job training | Team building exercises | WorkshopsMid-level Full TimeTexas-Austin13h ago
-
CI/CD | Capacity Planning | Disaster Recovery | Docker | ELK StackSenior-level Full TimeSan Jose, California, United States14h ago
-
Senior Enterprise Security Technical Analyst, Workspace USD 159K-231KAI Safety | Anti-abuse | Anti-abuse systems | Data Science | Machine LearningCross-functional collaboration | Global work environment | On-call rotationSenior-level Full TimeKirkland, WA, USA15h ago
-
Vice President, Information Security USD 69K-165KAmazon Web Services | Bladelogic | CVSS | Cloud Security | Cloud platformFlexible work resources | Health and wellbeing programs | Paid time off | Paid volunteer timeExecutive-level Full TimePittsburgh, PA, United States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | CRM | CSPM | Cloud Security | Cloud platformProfessional development | Remote work | Vendor events participationMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security (West Coast, US) USD 220K-260KAWS | Azure | CRM | CSPM | Cloud SecurityRemote workMid-level Full TimeUnited States1d ago
-
Sales Engineer - AppSec/Cloud Security USD 212K-260KAWS | CSPM | Cloud Security | Cloud Security Sales Engineering | Cloud platformRemote workMid-level Full TimeUnited States1d ago
-
API Design | AWS | Azure | CI/CD | Certificate managementBonus | Equity | Medical/Dental/VisionSenior-level Full TimeSanta Clara, California, United States1d ago
-
Security Engineer, Application Security USD 130K-500KApplication Security | Authentication Security | Authorization testing | Bug Bounty | BugcrowdEquity ownership | Fitness membership | Health insurance | Housing support | Meal stipendMid-level Full TimeSan Francisco or NYC1d ago
-
Security Engineer, Automation USD 130K-500KAPIs | AWS Secrets | AWS Secrets Manager | Active Directory | Azure Active DirectoryDaily meal stipend | Equity ownership | Fitness membership | Health insurance | Housing supportSenior-level Full TimeSan Francisco or NYC1d ago
-
Security Engineer, Cloud Infrastructure USD 130K-500KAWS Identity | AWS Identity and Access Management | AWS Organizations | Access Management | Amazon Web ServicesComprehensive health insurance | Daily meal stipend | Housing support | Premium fitness membership | Relocation supportSenior-level Full TimeSan Francisco or NYC1d ago
-
Director of Information Security USD 168K-225KBash | Budgeting | Business risk | Business risk management | CASBHybrid work | Local Arizona work requirementExecutive-level Full TimeIL Chicago Office R1d ago
-
Information Security Engineer - Endpoint USD 145K-200KAccess Tokens | Active Directory | EDR | ETW | Endpoint hardening401k plan | Commuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeNew York, NY1d ago
-
Information Security Engineer - Endpoint USD 145K-200KActive Directory | Credential Guard | EDR | ETW | Endpoint hardeningCommuter benefits | Hybrid work options | Paid Holidays | Paid time offSenior-level Full TimeWashington, D.C.1d ago
-
Cyber Data Protection Engineer (DLP Operations) USD 89K-121KAlert analysis | Audit Readiness | Compliance Evidence | Control Testing | Data Classification401k retirement savings plan | Life insurance | Long-term disability | Medical/Dental/Vision insurance | Paid caregiver leaveMid-level Full TimeWork at Home - Kentucky, United … R1d ago
-
Sr. Security Engineer, Vulnerability Management USD 112K-140KAWS | Azure | CNAPP | CSPM | CVSS401k match | Remote-first environment | Unlimited paid time offSenior-level Full TimeHome Office, United States R1d ago
-
Senior-level Full TimeIrving TX (Greenway), United States1d ago
-
Data Security Director USD 97K-189K800-53 | By Design | CCPA | Cloud Access Security Broker | Cloud SecurityExecutive-level Full TimeUS- IL40- Chicago-151N Frankln, United States1d ago
-
Engineer - Information Security USD 67K-88KAccess Control | Access Management | Application Security Testing | Cloud Security | Data SecurityEmployee resource groups | Medical, dental, and vision insurance | Mentorship programs | Paid caregiver leave | Paid parental leaveMid-level Full TimeUSA - TX - Carrollton - …1d ago
-
Security Business Partner Sr USD 80K-215KAccess Controls | Access Management | Automated Access Controls | Cloud Security | Data ProtectionMid-level Full TimeHome Location-VA (VAH01), United States1d ago