Threat Detection & Response Senior Specialist
Tasks
- Analyze logs for scope and impact
- Automate incident response workflows
- Collect evidence from endpoints
- Coordinate containment and response
- Design and implement playbooks
- Develop and enhance SIEM content
- Develop incident reports
- Escalate higher severity incidents
- Investigate security incidents
- Mentor junior staff
- Monitor security controls in real time
- Perform host-based analysis
- Perform malware analysis
- Perform network packet analysis
- Perform quality assurance for investigations
- Support incident response scoping
- Triage security alerts
- Tune security sensors
Perks/Benefits
Skills/Tech-stack
Bash | EDR | Email Security | Forensics | Identity Monitoring | Incident Response | Log Analysis | Malware analysis | Network Packet Analysis | Network packet | Packet Analysis | Powershell | Python | SIEM | SOAR | Scripting | Threat Intelligence | Threat hunting | XDR
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Anti-Bot | Binary Analysis | C++ | DDoS | DeobfuscationFully remote | Global team collaboration | High autonomy | Ownership over technical decisions | Work on cutting-edge security challengesMid-level Full TimeMexico R1d ago
-
Mid-level Full TimeRemote (Mexico) R1d ago
-
Especialista de ops de seg de id y accesos MXN 168K-192KAccess Control | Access Management | Active Directory | Azure Active Directory | CyberArk SentrySenior-level Full TimeCuliacán, Sinaloa, Mexico1d ago
-
Security Analyst (Contract) USD 76K-96KAWS | Application Security | Bash | CASB | CI/CDContract position | Supportive collaborative teamMid-level ContractMexico - Remote R3d ago
-
Senior Security Platform Engineer MXN 1000K-1300KAI Security | AWS | Azure | Bash | Cloud platformFlexible vacation | Headspace access | Hybrid work | Mental health days | Retirement savingsSenior-level Full TimeMexico, Mexico City R8d ago
-
AI | API Integration | DLP | Incident Response | LLMPaid time off | Remote work | Work with autonomySenior-level Full TimeMexico City R9d ago
-
Security Operations Analyst MXN 1040K-1462KAccess Management | Bash | CCPA | Cloud Security | CloudFormationEmployee assistance program | Healthcare insurance | Life insurance | Paid Company Holidays | Pension or retirement matchingSenior-level Full TimeMexico City9d ago
-
Incident Response Team - Alert Analyst MXN 204K-204KAlert triage | Cybersecurity | Incident Management | Incident Response | SIEMEnglish requirement advanced level | Hybrid work | Shift work 12x5Mid-level Full TimeAguascalientes R10d ago
-
AWS | CSPM | Cloud Security | Cloud Security Posture | Cloud Security Posture ManagementOn-call rotation | Remote workMid-level Full TimeMexico City, Mexico - Remote R14d ago
-
Subdirector de Ciberseguridad y Cumplimiento Tecnológico MXN 456K-456KAWS | Application Firewall | Azure | Business Continuity | CISAExecutive-level Full TimeMérida, Mexico15d ago
-
Senior Analyst, Risk Management & Analytics (R14040) MXN 540K-600KAlternative data | Credit Scoring | Data Analysis | Experimentation | Microsoft ExcelEqual opportunity employer | Remote workSenior-level Full TimeRemote - MX R15d ago
-
Senior Security Platform Engineer MXN 1040K-1410KAI copilots | Access Control | Alerting | Audit Readiness | AutomationHybrid work model | Onsite Days Per Week | Professional developmentSenior-level Full TimeMexico - Guadalajara R17d ago
-
Security Operations Engineer I (Bot Defense) MXN 300K-300KApplication Security | Brute Force | CSRF | Cookie manipulation | Cross-Site ScriptingNone Full TimeGuadalajara, Mexico21d ago
-
Senior Security Engineer MXN 721K-800KAWS | Bug Bounty | CloudTrail | Endpoint Management | GoExtended parental leave | Medical, dental & vision coverage | Unlimited PTOSenior-level Full TimeCDMX21d ago
-
Manager, Security Engineering & Operations USD 123K-175KAWS | Automated detection | Automated remediation | Automated response | CNAPPSenior-level Full TimeGuadalajara, Mexico R22d ago
-
Analista CTI MXN 216K-228KData Ingestion | Data Normalization | Indicator of Compromise | Indicator of Compromise IoC | Intelligence lifecyclePositive work environment | Superior legal benefitsMid-level Full TimeCiudad de México, CDMX, Mexico25d ago
-
Threat Detection & Response Senior Specialist MXN 840K-960KBash | Case management | Cloud Security | Detection engineering | EDRSenior-level Full TimeINSURGENTES, Mexico30d ago
-
Mid-level Full TimeMexico30d ago
-
Technical Advisor MXN 934K-1200KCIS Controls | Cloud Security | Customer Success | Cybersecurity | Endpoint protectionSenior-level Full TimeMexico City1mo ago
-
Technical Advisor MXN 934K-1200KCIS | Cloud Security | Customer Engagement | Cybersecurity | Endpoint SecuritySenior-level Full TimeMexico City1mo ago
-
Cyber Security Incident Response Analyst (Monterrey) MXN 228K-240KDefender for Endpoint | EDR | ICS | Incident Response | Malware analysisCoaching and mentoring | On-call rotation | On-site workMid-level Full TimeMonterrey - Lazaro Cardenas, Mexico1mo ago
-
Cyber Security Incident Response Analyst (Monterrey) MXN 216K-225KAttack techniques | Azure Sentinel | EDR | Endpoint Security | ICSCoaching and mentoring | On-site workMid-level Full TimeMonterrey - Lazaro Cardenas, Mexico1mo ago
-
Bash | Customer Service | IT Service Management | IT service | Incident Management24 7 Core support team | Group personal accident insurance | Group term life insurance | Health insurance | Paid leaveEntry-level Full TimeMexico1mo ago
-
Coordinador SOC MXN 192K-216KBlue Team | Chain of Custody | Digital Evidence | Digital Evidence Chain of Custody | Digital forensicsBirthday day off | Family protection club | Paid time off | Savings fund | Study scholarshipsMid-level Full TimeMexico1mo ago
-
Coordinador (a) CTI MXN 228K-240KAlienVault OTX | Bash | CVEs | CVSS | DNSFlexible hours | Hybrid work | Positive work environment | Superior legal benefitsMid-level Full TimeMexico City, CDMX, Mexico1mo ago