Security Operations Expert

Job Overview:We are actively searching for a SecOps hire who can advise a SaaS company on how to enhance their security infrastructure and strengthen their existing systems. This hire will need to leverage cutting edge tools to build innovative security solutions that address perceived security threats to the greater business. Your job will be to analyze data to identify threats, detect & then neutralize these threats, and ultimately create controls to reduce future occurrences. This hire will be someone who can work on a hybrid schedule (3-4 days in the office) and deliver on the following:ResponsibilitiesInvestigate alerts, triage, deep dive, and come up with proper action items and remediation plans to address gaps.Coordinate investigation, containment, and other response activities with business stakeholders and groups.Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement.Recommend or develop new detection logic and tune existing sensors/security controls.Work with security solutions owners to assess existing security solution's ability to detect/mitigate the abovementioned TTPs.Creating custom SIEM queries to support the monitoring and detection of advanced TTPs against the company network. Translating product usage data into actionable advice for security.Provide business guidelines in a regular cadence with Security and technical Stakeholders in collaboration with the Account Team, including Product, DevOps, Support, etc.Experience Required:4-year college degree or international equivalent.Previous work experience at a SaaS company or consulting firm for SaaS clients.5+ years working in an Incident Response or Cyber Security team managing security incidents and creating incident reports. 3+ years of working with security tools such as SIEM, Analytics & Intelligence, Intrusion Detection, Malware detection, Data Loss Protection, and Identity & Access ManagementDemonstrate an understanding of system and security controls on at least two OSs (Windows, Linux / Unix, and MacOS (Advantage), including host-based forensics and experience with analyzing OS artifacts.Perform host-based analysis, artifact analysis, and malware analysis in support of security investigations and incident response (Advantage).Understanding of cryptographic algorithms utilized by public blockchain networks and other cryptography-related topics. (Advantage).Familiarity with cloud services, Kubernetes, cloud environment architecture, and the major cloud providers (AWS, GCP, Azure)Our client is unable to sponsor work visas at this time. So please refrain from applying if you require Visa sponsorship to work.

Created: 2025-02-02