Cybersecurity Analyst at Trust Control monitoring threats and responding to incidents in the SOC. Engaging in continuous learning to enhance cybersecurity practices and strategies.
About the role
- Security Operations Center Engineer enhancing security posture via automation and threat hunting. Requires strong experience with SIEM and SOAR platforms and Python scripting.
Responsibilities
- Maintain our SIEM and SOAR platforms to ensure optimal performance and effectiveness in detecting and responding to security threats.
- Develop and fine-tune detection and correlation rules, dashboards, and reports within the SIEM to accurately detect anomalous activities.
- Create, manage, and optimize SOAR playbooks to automate incident response processes and streamline security operations.
- Utilize Python scripting to develop custom integrations and automate repetitive tasks within the SOC.
- Build and maintain automation workflows to enhance the efficiency of threat detection, alert triage, and incident response.
- Conduct proactive threat hunting to identify potential security gaps and indicators of compromise.
- Analyze security alerts and data from various sources to identify and respond to potential security incidents.
- Collaborate with Information Security team members and other teams to enhance the overall security of the organization.
- Create and maintain clear and comprehensive documentation for detection rules, automation workflows, and incident response procedures.
Requirements
- 6+ years of experience in a Security Operations Center (SOC) environment or a similar cybersecurity role.
- Hands-on experience with managing and configuring SIEM platforms (e.g., Elastic SIEM, Splunk, QRadar, Microsoft Sentinel).
- Demonstrable experience with SOAR platforms (e.g., Palo Alto Cortex XSOAR, Splunk SOAR) and playbook development.
- Proficiency in Python for scripting and automation of security tasks.
- Strong understanding of incident response methodologies, threat intelligence, and cybersecurity frameworks (e.g., MITRE ATT&CK, NIST).
- Excellent analytical and problem-solving skills with the ability to work effectively in a fast-paced environment.
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Life Insurance (Basic, Voluntary & AD&D)
- Paid Time Off (Vacation, Sick & Public Holidays)
- Training & Development
- Retirement Plan (401k, IRA)
- Free breakfast and lunch
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
SecOps Engineer responsible for maintaining and improving application security in cloud infrastructure at Shopmonkey. Collaborating on security tools and processes with a focus on compliance and incident management.
Senior SOC Analyst at Telstra helping protect employees and customers from cyber threats. Leading incident response and threat analysis in Security Operations Centre.
Physical Security Operations Manager leading physical security initiatives and managing guard operations for data center construction. Focused on protecting assets and mitigating risks in critical environments.
Cybersecurity Analyst focusing on threat detection and incident response. Collaborating on vulnerabilities and ensuring a secure client environment at PwC.
Associate Director leading Game Security Operations for Activision across enforcement and threat intelligence disciplines. Ensuring daily effectiveness and strategic development of security across Activision titles.
Senior Incident Response Engineer leading advanced security responses focused on Microsoft E5 security at Acrisure. Collaborating across teams for robust incident management and security policy enforcement.
Senior Director of Product Marketing coordinating go - to - market strategy for endpoint security solutions at Tanium. Leading cross - functional teams to enhance product positioning and market impact.
SecOps Engineer implementing infrastructure security solutions in AWS and GCP at Tala. Focused on vulnerability management and protection in a global financial infrastructure company.
SOC Manager leading cybersecurity operations and strategies for federal clients in a 24/7 environment. Managing SOC activities and mentoring teams while maintaining security integrity.