Description
You will focus on implementing, configuring, and maintaining security detection rules across on-premise and Google Cloud environments.
Responsibilities
- Implement and maintain security detection rules, including intrusion detection, anomaly detection, and log analysis.
- Lead incident response efforts, conduct root cause analysis, and implement corrective measures.
- Perform Kubernetes-specific incident response and forensic analysis.
- Develop automation scripts and tools to streamline detection operations and response.
- Execute proactive threat hunting, monitoring, and tuning within security operations.
Required Skills
- 8+ years of experience in security operations and incident response.
- Proficiency in Python and Bash for security automation.
- Hands-on experience with Kubernetes incident response and forensics.
- Experience with Splunk or similar SIEM solutions.
- Practical application of the MITRE ATT&CK framework for threat detection and gap analysis.
- Experience with threat emulation tools such as Atomic Red Team, PurpleSharp, or Safebreach.
- Knowledge of CI/CD pipelines and Test Driven Development using Python.
- Experience with cloud security detection tools and log analysis.
Preferred Skills
- Google Cloud Professional Cloud Security Engineer certification.
- Relevant certifications such as CISSP, GCIH, GCIA, CKA, or Splunk certifications.
Key Skills
Education
Any Gradute
- Posted On: 15+ Days Ago
- Experience: 8+ years of experience
- Availability: Remote
- Openings: 1
- Category: Cloud Security Engineer
- Tenure: Contract - Corp-to-Corp Position