Related skills
splunk siem mitre att&ck wireshark cndπ Description
- Coordinate teams in preliminary incident response.
- Interface with the customer on site.
- Determine actions for anomalous network activity.
- Assess topology and device configurations; advise security best practices.
- Write and publish CND guidance and incident reports.
- Collect artifacts (PCAP, domains, URIs, certs) for mitigation.
π― Requirements
- BS in CS/Cyber Security/Engineering or HS Diploma with 10+ yrs exp.
- 8+ years of network investigations experience.
- Knowledge of CND policies, procedures, and regulations.
- Knowledge of standard protocols: ICMP, HTTP/S, DNS, SSH, SMTP, SMB, NFS, TCP/IP.
- Knowledge of WiFi networking and network topologies (DMZ/WAN).
- Proficiency with Splunk (or other SIEMs) and MITRE ATT&CK.
π Benefits
- Equal Opportunity and Affirmative Action Employer.
- Referral bonus up to $3,500 for successful referrals.
- Opportunities to grow with ARSIEM.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!