Related skills
monitoring siem edrπ Description
- Own strategy and maturity roadmap for monitoring and detection metrics.
- Define logging standards and measurable performance indicators.
- Lead and develop security operations analysts and the detection team.
- Improve alert quality, detection coverage, and automation.
- Collaborate with Security Eng, IT, Compliance, and leadership.
- Establish reporting rhythms and documentation for continuous improvement.
π― Requirements
- 5β8+ years in security ops or incident response with 2+ years leading teams
- Hands-on SIEM and EDR with alert tuning, dashboards, and detection optimization
- Reduce false positives and boost meaningful detection coverage
- Define and track metrics (MTTD, MTTR, alert fidelity, coverage)
- Strong enterprise logging across endpoints, identity providers, SaaS, and cloud
- Familiar with regulated environments (CMMC 2.0, NIST 800-53, SOC 2) and audit readiness
- Experience coordinating incident investigations with internal and external DFIR partners
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!