Responsibilities:
Lead complex incident response efforts and perform deep investigations across logs, network traffic, and other data sources.
Develop and implement effective incident response plans and playbooks.
Threat Hunting: Proactively identify and investigate advanced threats and vulnerabilities.
Develop and implement threat hunting strategies to stay ahead of emerging threats.
Oversee SOC operations by monitoring, analyzing, and responding to security events while ensuring effective use of security tools and continuously improving operational processes.
Ensure effective utilization of security tools and technologies.
Work at a high technical level and be capable of identifying threats, and threat vectors that cause security events.
Design, develop, and maintain security automations and SOAR workflows to streamline SOC operations, reduce manual effort, and significantly accelerate incident detection, investigation, and response.
Initiate and lead continuous improvement initiatives aimed at optimizing operational workflows, enhancing detection and response capabilities, and expanding overall security coverage across the environment.
Research emerging threats and develop new detection use cases to enhance threat identification and prevention capabilities
Deep understanding of network security, endpoint security, cloud security, and security operations.
3+ years experience working within a security operation/Security architecture teams.
2+ years experience working with SOAR platforms for security automation.
Hands-on experience in researching emerging threats and vulnerabilities, and developing new detection use cases to identify and block attacks.
Demonstrated knowledge and experience with MITRE ATT&CK Framework
Proficiency in using security tools and technologies, such as SIEM, EDR, SOAR, EASM, CSPM and threat intelligence platforms.
Proficient in Azure and AWS Cloud platforms
Ability to analyze complex security problems and develop effective solutions.
Strong analytical thinking, effective leadership, and clear communication of complex technical concepts to any audience.
