Upvote
Downvote
Sr. Engineer, Incident Response - USA Remote
Share Job
- Suggest Revision
Remote
- Analyze large and complex technical data sets to identify abnormal user, network, and system activity warranting further investigation using SIEM, EDR, and SOAR tools
- Correlate disparate data sources to provide a wholistic picture of our threat detection capability, and lead continuous improvement initiatives related to MITRE ATT&CK coverage
- A minimum of 7 years of experience in information technology, with a significant portion devoted to security operations, incident response, threat intelligence, vulnerability management, and threat management.
- Strong understanding of technology concepts such as TCP/IP, DHCP, DNS, authentication, authorization, Microsoft Windows OS architecture, and network traffic control.
- Maintain strong information security knowledge of threat actor tactics, techniques, and procedures to identify potential risks and develop achievable and effective mitigation strategies.
Active Job
Updated 2 days agoSimilar Job
Relevance
Active