Related skills
cloud splunk siem edr elkπ Description
- Identify and respond to security incidents globally.
- Act as incident commander to drive incidents through response lifecycle.
- Design and maintain security alerts, playbooks, and escalation workflows.
- Conduct threat hunting and anticipate future threats.
- Research threat intelligence reports, triage and manage resulting workflows.
- Partner with stakeholders to improve preparation, identification, analysis, containment, and post mortems.
π― Requirements
- 5+ years managing global security incidents and SOC/PSIRT/CSIRT work.
- SIEM expertise (ELK, Google BigQuery, Splunk; Splunk preferred).
- Hands-on EDR tooling; root-cause via endpoint telemetry.
- SOAR platforms such as Tines or Splunk SOAR.
- Strong communication and leadership with diverse stakeholders.
- Experience with cloud tech (GCP/AWS/Azure/Heroku).
π Benefits
- Generous performance-based bonus plan.
- Rich medical, dental, and vision coverage.
- Generous retirement contributions with 100% vesting.
- Quarterly all-company wellness days.
- Country holidays plus a birthday leave.
- One-time home office stipend.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!