DUTIES & RESPONSIBILITIES;
- Owns and leads individual incident response activities by analyzing securityalertsand coordinating responses.Perform in-depth event review and analysis where appropriate.Analyzeevents, research the potential cause, and recommend a course of action
- Designs modern detective controls for emerging security risks and involved in innovative programs to enhance the firm's security posture
- Hunts for indications of compromiseacross multiple technology platforms
- Continuously improves our alerting use cases and the threat hunting program
- Stays updated on the latest security trends, vulnerabilities, and threat actors to continually improve the organizations security posture
- Participates in on-call rotation schedule to provide 24/7 coverage for security incidents and emergencies
- Documents/generates reports detailing security incidents for security leaders and the business
- Conductspostmortem reviews of incident response (IR) activities, to facilitate continuous improvement
- Researches security trendswith thegoal of improvingour processes and tools
MINIMUM REQUIREMENTS;
- Bachelor's degree in computer science or related field
- Requires 6+ years of experience working in a Security Operations role
- Threat hunting experience
- Familiarity with known cyber security frameworks including NIST and Mitre, ATT&CK, and fundamentals of kill chain analysis
- Hands-on working knowledge of SIEM/SOAR/XDR Tools (Cortex XSIAM, Torq, etc.)
