Detection & Response Engineer

View full description

Requirements:

• 5+ years of experience working in a security operations role and handling security incidents from triage to remediation.
• Experience with SIEM tools such as Splunk or ELK.
• Working knowledge of cloud technologies like Amazon Web Services.
• Strong knowledge of security frameworks such as Cyber Kill Chain and MITRE ATT&CK.
• Familiarity with shell scripting or another scripting language such as Python.
• Self-motivated and able to work independently with minimal supervision.

Responsibilities:

• Responsible for threat detection and monitoring of high fidelity security alerts.
• Lead Incident Response activities to resolve security incidents and minimize risk for the organization.
• Identify security gaps and implement constant improvements to the security stack, including vulnerability management.
• Communicate effectively with lines of business and clients to address complex information security issues.