🛠 Tech Stack

💼 About This Role

You'll monitor, analyze, and triage security alerts across SIEM, endpoint detection, and cloud security platforms for a modern cybersecurity team. Your core impact involves performing incident investigations, executing containment actions, and contributing to detection engineering. This role offers strong exposure to CrowdStrike Falcon and cloud security operations.

🎯 What You'll Do

• Monitor and triage security alerts across SIEM, endpoint, and cloud platforms.
• Perform initial investigations by correlating logs and telemetry.
• Execute containment and remediation actions per escalation procedures.
• Contribute to detection engineering, including rule tuning and development.
• Review threat intelligence feeds and correlate indicators of compromise.

📋 Requirements

• 2–4 years of experience in security operations or incident response.
• Hands-on experience with SIEM platforms like Chronicle, Splunk, or Sentinel.
• Familiarity with endpoint detection and response tools, preferably CrowdStrike Falcon.
• Basic understanding of cloud security concepts on AWS or Google Cloud.

✨ Nice to Have

• Scripting or automation experience with Python.
• Relevant certifications such as CompTIA Security+, CySA+, GCIH, or GCIA.
• Knowledge of identity-related attack patterns like credential stuffing.

🎁 Benefits & Perks

• 🔬 Exposure to AI-driven cybersecurity environment
• 🌍 Collaborative globally distributed work culture
• 📈 Career development with modern security tech
• 🎓 Ongoing learning in incident response and cloud security
• 🌟 Inclusive workplace valuing diversity and growth

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min