Related skills
azure powershell aws siem edrπ Description
- Threat research on new ATPs, threats; identify IOC, TTPs.
- End-to-end security incident triage; provide context for remediation.
- Tune security platforms to reduce false positives; improve detections.
- Create and integrate playbooks and custom parsers for SOC tools.
- Develop and maintain incident response playbooks for continuous improvement.
- Collaborate with developers to simulate cyber-attacks and identify vulnerabilities.
π― Requirements
- 8+ years in cybersecurity with a focus on security operations.
- Degree in Computer Science.
- Expertise in MITRE/NIST frameworks and threat modelling.
- Proficiency with SIEM, XDR, IDS/IPS, CSPM and forensic tools.
- Hands-on with EDR, firewalls, log management, auth systems.
- Incident response, threat hunting, and malware analysis.
- Certifications such as GCIH, GCIA, CASP or GCFA.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Operations Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!