Related skills
bigquery cloud python siem google cloud platformπ Description
- Domain ownership for Detection & Response across telemetry from product, cloud, and identity.
- Translate requirements into milestones and drive cross-functional delivery.
- Architect scalable alerting within Google SIEM/SOAR; detections as code.
- Develop detection logic and playbooks for modern threats and ATO.
- Operational lead for security incidents during EMEA hours.
- Build threat intelligence into SIEM/SOAR logic.
- Ensure telemetry flow and health of core security stack (SentinelOne, Google CSC, Mimecast Incydr).
π― Requirements
- Security foundations across Product, Cloud, and Corporate Security.
- Detection-as-code lifecycle and precise alerting.
- Operational experience handling high-volume security tasks.
- GCP tools: Cloud Logging, BigQuery, Pub/Sub.
- Python for automation and AI workflows.
- Experience with EDR, email security gateways, and cloud-native security centers.
- SaaS and analytics-scale security experience.
π Benefits
- Medical, Vision, and Dental care
- Mental wellness benefit
- Generous vacation and holidays
- Enhanced parental leave
- Volunteer Time Off
- 401(k) and wellness benefits
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!