Related skills
aws python gcp siem sigmaπ Description
- Run incidents end-to-end across cloud and SaaS.
- Write detections with MITRE ATT&CK coverage.
- Shape the SOC with AI agent integration into triage.
- Partner across Legal, Compliance, IT during incidents.
- In-office presence 2 days/week in San Francisco.
π― Requirements
- 5+ years incident response across AWS and GCP.
- Experience leading live incidents end-to-end.
- Proactive threat hunts using current TTPs.
- Detection authoring in SIEM platforms (Sigma, KQL).
- Strong Python scripting; automation mindset.
- GCIH or equivalent IR certification preferred.
π Benefits
- Carry program participation and discretionary bonus.
- Health, dental, vision, disability, life insurance.
- 401K plan and vacation/sick leave.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!