Sr Associate Cybersecurity Engineer - Incident Response

Sr Associate Cybersecurity Engineer – Incident Response

1+ years of experience as a security engineer/analyst in related domains
Bachelor’s Degree or equivalent experience
Ability to drive multiple projects and priorities while managing operational responsibilities
Demonstrated knowledge of adversary TTPs (Tactics, Techniques and Procedures)
Deep understanding of network and application security threats, attack techniques, and mitigation options and network related protocols (e.g. TCP/IP, IPSEC, routing protocols, etc.)
Python, Ruby and other scripting languages is essential, as is a strong understanding of Linux/OSX and Windows
Excellent verbal and written communication skills

Experience responding to operational queue work as part of a follow-the-sun model
Lead cyber security incident response and investigation efforts. This includes digital forensics and cloud security events
Improve threat detection capability by performing gap analyses and remediation
Identify where we need to apply additional controls, extra tooling, and automation to extend the coverage of the security monitoring and response capabilities
Build and maintain investigation and/or response tools and processes
Evaluate new tools and techniques to create innovative and practical security solutions
Help drive team development by mentoring new and existing staff

Other relevant certification/s and training (e.g. Offensive Security, SANS, CISSP, Specific Security Tooling, etc.)
Experience with cloud security concepts, solutions, and automation
Experience in incident response and incident management
Experience with threat hunting techniques
Experience with SIEM and SOAR security technologies and solutions
Experience in performing digital forensics and securely acquiring data from various sources