Related skills
linux nist mitre att&ck windows security mdeπ Description
- Monitor and triage security alerts from EDR/XDR, SIEM; prioritize incidents.
- Investigate endpoint threats with MDE, CrowdStrike EDR, SentinelOne EDR, and Stellar Cyber XDR.
- Perform incident response: evidence collection, containment, eradication, recovery, reporting.
- Conduct endpoint analysis: processes, registry changes, tasks, network.
- Correlate telemetry across endpoint, identity, network, and cloud sources.
- Execute response actions per playbooks and approvals.
π― Requirements
- 2β4 years of experience in a SOC, incident response, cyber analyst or security operations role.
- 2β4 years hands-on with MDE, CrowdStrike EDR, SentinelOne EDR, or Stellar Cyber XDR.
- Tactics/techniques aligned to MITRE ATT&CK, NIST, and Lockheed Martin.
- Solid understanding of Windows security fundamentals and Linux/macOS concepts.
- Familiarity with SIEM concepts, ticketing/case management, escalation processes.
- Document incidents clearly and communicate findings to technical and non-technical stakeholders.
π Benefits
- Fully remote work model.
- VirtualArmour Academy training.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!