🛠 Tech Stack

💼 About This Role

You'll be a core contributor to Lead Bank's Security Operations team, building detections, triaging alerts, and responding to incidents across cloud infrastructure and security tooling. You'll mentor junior analysts and partner with leadership to drive our security posture forward in a complex regulatory banking environment.

🎯 What You'll Do

• Build, tune, and maintain detection rules and alerts in SIEM
• Own incident response execution end-to-end
• Monitor and investigate security events across endpoints, cloud, identity, and network telemetry
• Triage and prioritize vulnerability findings and track remediation SLAs

📋 Requirements

• 5+ years in information security or security operations
• Hands-on SIEM experience with query writing and detection building
• Strong working knowledge of cloud security (AWS preferred)
• Demonstrated incident response experience including leading investigations

✨ Nice to Have

• Experience with log routing, transformation, and enrichment
• Hands-on experience with enterprise EDR/XDR platform
• Scripting or automation experience in Python or Bash

🎁 Benefits & Perks

• 💰 Competitive compensation based on experience and location
• 🏥 Medical, Dental, Vision coverage with FSA, HSA, HRA
• 👶 Paid parental leave
• 🏖️ Flexible vacation policy including PTO and paid holidays
• 📈 401k matching

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Phone Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min