You will manage security operations and detection engineering to protect cloud and on-premise environments.
Responsibilities
Execute detection and response-based security controls across public cloud environments.
Implement threat modeling and detection engineering best practices.
Utilize SIEM tools to monitor and respond to security incidents.
Apply Infrastructure as Code to manage security configurations.
Influence technical teams to drive successful security outcomes.
Required Skills
3+ years of experience with SIEM and security operations using tools like Splunk ES, Anvilogic, Palo Alto Cortex, CrowdStrike, MS Sentinel, or Google Chronicle.
3+ years of experience with Splunk.
3+ years of experience with detection and response in AWS, GCP, or Azure.
2+ years of experience with WIZ.
Proficiency in Python, Java, or C++ with a solid understanding of data structures and algorithms.
Experience with Infrastructure as Code including CDK, CloudFormation, or Terraform.
Experience with Git-based source code management and working in Agile teams.
Bachelor's or Master's degree in Computer Science, Information Security, or a related field, or equivalent experience.
Preferred Skills
Knowledge of threat intelligence feeds, cybersecurity frameworks, and incident response methodologies.