3 months ago
Remote, WorldwideMid Level / Senior
H1B Sponsor
Responsibilities
- Manage the relationship with the third-party SOC, focusing on alert quality and escalation workflows.
- Operate and maintain the on-prem SIEM, including log onboarding and alert tuning.
- Ensure critical systems generate appropriate security telemetry.
- Refine detection logic based on threat intelligence and incident learnings.
- Assist with security incidents and coordinate with IT and Engineering for resolution.
- Develop and improve incident response playbooks and communication procedures.
- Track and report on key security operations metrics.
- Act as a liaison between IT Helpdesk and the Security team for security-related tickets.
Requirements
- 3+ years of experience in Security Operations roles.
- Hands-on experience operating and tuning a SIEM.
- Experience maintaining Kubernetes clusters.
- Proficiency in Linux and scripting/automation (Python, Bash).
- Experience working with a third-party SOC or MSSP.
- Strong incident response and alert investigation skills.
- Understanding of common attacker techniques and detection methodologies.
- Experience collaborating with IT/helpdesk teams on security workflows.
- Familiarity with endpoint security and log-based detections.
- Strong written and verbal communication skills.
Benefits
- Competitive Salary & Stock Options.
- Health Benefits.
- One-time USD $500 for new hire home-office setup.
- Monthly stipend of USD $150 via a Brex Card.