Related skills
azure powershell python incident response siem๐ Description
- Own incidents end-to-end across SIEM/EDR/network/identity/cloud telemetry.
- Conduct root-cause analyses with Product/Engineering to improve detections.
- Conduct proactive threat hunting across enterprise and cloud telemetry.
- Develop and maintain incident response playbooks and runbooks; drills.
- Manage and tune detections/response tooling (SIEM/EDR/SOAR); mentor juniors.
- Automate SecOps tasks with DevOps/IaC mindset and API integrations.
๐ฏ Requirements
- Minimum 3 years in Security Operations (SOC, incident responder, threat hunter)
- Ownership of incidents end-to-end with containment decisions and stakeholder comms
- Hands-on with SIEM (Sentinel/Splunk/Elastic) and EDR (CrowdStrike)
- Scripting in Python, PowerShell, Bash, or Node
- Author/tune KQL queries; experience with coding agents/LLM tools
๐ Benefits
- Flexible work arrangements (hybrid/onsite/remote) vary by team
- Inclusive workplace with equal opportunities
- Reasonable accommodations available on request
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!