Related skills
azure siem edr servicenow microsoft defenderπ Description
- Lead enterprise Security Operations program and incident response.
- Manage blended ops model with internal, MSP, and offshore teams.
- Own ServiceNow SIR workflows, data models, and procedures.
- Design and improve SIR playbooks to automate triage and containment.
- Drive automation to reduce manual effort and improve MTTR/MTTD/MTTC.
- Oversee EDR/SIEM capabilities and Azure Defender integration.
π― Requirements
- 5+ years in Security Operations or SOC roles.
- 2+ years managing ServiceNow SIR workflows and playbooks.
- Experience designing incident response automation in SIR/SOAR.
- Hands-on with EDR platforms integrated with SIR (Defender/CrowdStrike).
- Strong EDR and SIEM experience in enterprise environments.
- Azure security experience, including Microsoft 365 E5 features.
π Benefits
- Free premium medical, dental, life and vision insurance.
- Generous 401(k) match.
- Unlimited PTO β time off as needed.
- Company events, happy hours, and birthday treats.
- Paid sick leave in accordance with laws.
- Virtual yoga, meditation or boot camp classes daily.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!