This job posting has expired
Expired on April 10, 2026
Job Description
Perform advanced monitoring, analysis, and investigation of security alerts and incidents. Act as an escalation point for complex incidents and support L1/L2 analysts. Lead incident response activities including containment, eradication, recovery, and root cause analysis. Conduct threat hunting and fine-tune SIEM use cases.
Responsibilities
- Monitoring, analysis, and investigation of security alerts
- Lead incident response activities and root cause analysis
- Conduct threat hunting by analyzing logs and network traffic
- Fine-tune SIEM use cases and detection rules
- Coordinate with IT teams for remediation activities
- Support vulnerability management and risk assessments
Qualifications
- 5+ years of experience in cybersecurity operations or SOC roles
- Strong understanding of MITRE ATT&CK framework
- Experience with SIEM platforms (Splunk, QRadar, Sentinel, ArcSight)