Related skills
azure aws python gcp ruby📋 Description
- Monitor and triage security alerts across cloud, SaaS, and corporate systems.
- Conduct end-to-end investigations: scoping, containment, eradication, recovery.
- Own investigations independently during high-severity incidents.
- Configure and maintain SIEM detections and alert logic (Panther).
- Build and improve automation and workflows for incident response.
- Document incidents and post-incident reviews; contribute to playbooks.
🎯 Requirements
- 5+ years of experience in Security Operations, Incident Response, or Security Engineering.
- Hands-on with SIEM platforms; Panther experience valued; log analysis and detection engineering.
- Experience investigating cloud-native incidents (GCP preferred; AWS/Azure also relevant) and SaaS apps.
- Experience automating security workflows and investigations.
- Proficiency in Python; Ruby familiarity is a plus.
- Ability to operate independently, prioritize effectively, and make sound decisions under pressure.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest — finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!