Job Summary:

Responsible for responding to threats identified through our technologies, threat intelligence, and proactive actions we drive. Investigate alerts, such as malware detections or suspicious activities. Provide analysis and lead response activities when an event becomes a security incident. Mitigate or prevent risks at scale across a complex enterprise.

RESPONSIBILITIES:   

 

• Monitor and respond to security alerts generated by technologies such as SIEM, IDS, EDR/XDR, Wiz, and various other sources within a given SLA. 

• Perform triage, in-depth analysis, and investigation as guided by processes and playbooks. 

• Assist with incident response and post incident reviews. 

• Detect & coordinate security vulnerabilities remediation 

• Respond to security related service requests 

• Communicate recommendations and guidance based on results of security incident analysis to the Engineering team or end user team. 

• Coordinate a response to the security incident with the relevant teams. 

• Develop, document, and implement runbooks, capabilities, and techniques for IR 

• Maintain current knowledge and understanding of the threat landscape, emerging security threats, and vulnerabilities 

• Work to create, leverage automation, continuously develop, and maintain mature information security technology infrastructure. 

• Collaborate and align closely with the Security Tools Administration team to create, test, and implement security controls and technology. 

• Assess alert rules for fine tuning. 

 

Qualifications: 

• Bachelor's Degree holder

• Two (2) or more years of experience in Security Operations and handling security incidents. 

• Performing triage and investigation on AWS CloudTrail and Guard Duty security alerts. 

• AWS Certified Cloud Practitioner certification is preferred, but not required. 

• Knowledge in Microsoft Defender (MDE, MDC, MDI, M365), Firewall, DNS, Email Security tools, Azure, Entra, and Microsoft Sentinel  

• Creating Security incident Playbooks and SOPs 

• Leverage Automation workflows (GitHub, API integration)  

• Experience in using AI models (MS Copilot, Claude, others) 

• Som experience with coding, scripting, and query languages (python, perl, KQL) 

• Willing to work on a rotating schedule 

• Ability to quickly learn and apply enterprise AI tools and technologies to support technical workflows and business objectives

We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click here to access benefits specific to your location.

We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1-855-833-5120.

Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here.

Please read our Candidate Privacy Policy.

We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

USA Job Seekers:

EEO Know Your Rights.