Cloud Security Engineer at Artemys designing and maintaining secure Azure infrastructures, overseeing security monitoring and incident management.
About the role
- Cybersecurity Incident Response Engineer in Comcast's Security Incident Response Team mitigating threats and restoring environments following incidents. Working with advanced technologies to safeguard customers and infrastructure.
Responsibilities
- Monitors networks for security events and alerts to potential/active threats, intrusions, and/or compromises
- Restores environment after an incident and ensures that the managed security service has thorough detection capabilities in place for emerging threats
- Performs service requests from internal/external teams
- Maintains an advanced understanding of cyber security threats, vulnerabilities, attacks, responsible groups, motivations and techniques
- Continues to assess the evolving threats and new technologies, solutions, and services to stay ahead of them through research
- May perform documentation, vetting and weaponization of identified vulnerabilities for operational use
- Evaluates event flows to identify common risks and vulnerabilities to develop and implement solutions
- Assists with security audits, risk analysis, network forensics and penetration testing
- Provides assistance in monitoring the security of all designated networks and systems
- May prepare detailed incident reports and technical briefs for the IT security team
- Conducts After Action Reviews (AAR) to improve the response process including updating playbooks
- Familiarizes self with company goals and strategies in order to achieve short-term goals with resolution
- Strives to achieve personal goals and those set forth by management
- Consistent exercise of independent judgment and discretion in matters of significance
- Regular, consistent and punctual attendance
- Must be able to work nights and weekends, variable schedule(s) as necessary
Requirements
- 2–5 years of experience leading or supporting incident response activities
- Ability to review and interpret logs to identify potential attacks or anomalies
- Strong analytical skills to recognize evolving attack patterns and adapt response strategies
- Hands-on experience identifying and mitigating phishing attempts
- Skilled in interpreting different types of attacks across various log sources
- Ability to validate and assess Indicators of Compromise for accuracy and relevance
- Solid understanding of network protocols and architecture
- Experience analyzing Windows and Linux environments for security threats
- Familiarity with securing cloud platforms and services
- Experience with Security Information and Event Management (SIEM) platforms for monitoring and analysis
- Knowledge of Endpoint Detection and Response (EDR) tools and processes for endpoint security
- Understanding of authentication mechanisms and identity management
- Ability to analyze and secure endpoints across diverse environments
- Strong verbal and written communication skills for clear reporting and collaboration
- Ability to work effectively within cross-functional teams in fast-paced environments
Benefits
- Best-in-class Benefits to eligible employees
- Array of options, expert guidance, and always-on tools
- Support you physically, financially, and emotionally through big milestones and in everyday life
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Lead global Cyber Detect and Respond team at Assa Abloy, ensuring timely incident response and security compliance. Oversee operations while collaborating across IT and business functions for effective threat management.
Lead Cybersecurity Analyst responsible for technical leadership of a 24x7 SOC team at AT&T. Drive operational standards, incident response, and continuous improvement initiatives.
Security Engineer safeguarding AWS environments for Genesys Cloud mission. Handling advanced threats and collaborating with SecDev, PenTest, DevOps, and SRE teams.
Senior Security Operations Center Analyst protecting computer systems and data through investigation and incident response. Collaborating with IT leaders and mentoring junior analysts in security operations.
Security Operations Engineer creating automations and detection strategies for security infrastructure. Collaborating across teams to enhance security measures and protect organizational assets.
Solution Sales Manager driving revenue growth in Austria and Switzerland's financial sector. Collaborating with teams and managing sales cycles for ServiceNow and Tanium - related services.
Lead SOC Analyst responsible for monitoring and controlling OCLC services. Providing leadership and mentorship while ensuring service delivery and incident management in a hybrid work environment.
Technical Writer supporting Cyber Security Operations Center, documenting processes and workflows for incident response. Collaborating with analysts and engineering teams to create actionable documentation.
Leading the Security Operations Team at interactive investor to monitor and respond to security incidents. Ensuring robust security measures to safeguard vital business assets and client investments.