🛠 Tech Stack

💼 About This Role

You'll lead high-severity incident investigations and automate SOC workflows for a hybrid cybersecurity team. You'll act as a bridge between operational response and engineering uplift, driving detection quality and platform improvements.

🎯 What You'll Do

• Investigate complex security incidents with autonomy
• Develop and refine threat hunting queries
• Tune SIEM/SOAR alerts to reduce noise
• Automate SOC processes using scripting

📋 Requirements

• 5+ years in Security Operations or Incident Response
• Deep familiarity with SIEM/SOAR platforms (Elastic, Splunk, Sentinel)
• Advanced understanding of cloud services (AWS/GCP) and Linux
• Strong scripting in Python or Bash

✨ Nice to Have

• Experience with regulatory frameworks (DORA, ISO 27001, PCI DSS)
• Contributions to red teaming exercises

🎁 Benefits & Perks

• 💰 Competitive Salary
• 🏖️ Workation (30 days remote from anywhere)
• 💪 Annual Performance Bonus
• 🏥 Comprehensive Health & Pension
• 🎁 Employee Referral Program

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min