Related skills
aws python splunk siem edr๐ Description
- Monitor and triage security alerts from EDR, DLP, SIEM, cloud, and web security platforms
- Investigate incidents including credential compromise, unauthorized access, malware infections, and data exposure
- Analyze logs across endpoints, cloud services, and applications to determine root cause, impact, and scope
- Perform proactive threat hunting to identify suspicious activity and gaps in detections
- Execute containment, remediation, and recovery actions following established incident response procedures
- Develop and tune detection rules and alerting logic to reduce false positives
๐ฏ Requirements
- 2โ4 years of experience in SOC, Security Operations, or Incident Response
- Strong understanding of the incident response lifecycle and threat detection methodologies
- Hands-on experience with security tools such as EDR, DLP, SIEM, vulnerability scanners, and cloud security platforms
- Experience with CrowdStrike, Netskope, Splunk, Sentinel, or similar technologies
- Strong understanding of networking fundamentals including TCP/IP, DNS, HTTP/S, SMTP, and common attack vectors
- Basic scripting or automation experience using Python or similar languages
๐ Benefits
- Join a mission-driven security team shaping retail
- Equal opportunity employer; inclusive hiring practices
- Reasonable accommodations for applicants with disabilities
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!