Related skills
cloud scripting siem edr mitre att&ckπ Description
- Triage and investigate security alerts from internal tools and external partners.
- Monitor and manage the security operations ticket queue; prioritize, track, and resolve.
- Investigate security events across endpoints, identity, cloud, and SaaS platforms.
- Support incident response activities including containment, documentation, and post-incident analysis.
- Respond to external threat intel and digital risk alerts related to brand abuse or exposed credentials.
- Collaborate with security engineering teams and partners to improve detection and reduce false positives.
π― Requirements
- 3+ years in security operations, incident response, or related cybersecurity role.
- Experience investigating security alerts across endpoint, identity, cloud, or SaaS.
- Familiarity with SIEM platforms, log analysis, and security monitoring tools.
- Understanding of MITRE ATT&CK framework.
- Experience with EDR, identity systems, or cloud logging tools.
- Experience automating security operations with scripting or AI-assisted automation.
π Benefits
- Generous equity package.
- Equal Opportunity Employer.
- Commitment to diversity and an inclusive culture.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Operations Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!