🛠 Tech Stack

💼 About This Role

You'll join a SOC team defending privileged access infrastructure at a global cybersecurity leader. You'll monitor, investigate, and respond to security events in high-stakes environments targeted by nation-state actors. This role offers the opportunity to work with AI-augmented tools and build detection capabilities from the ground up.

🎯 What You'll Do

• Triage security alerts across SIEM, EDR, and CSPM platforms
• Investigate incidents and execute IR runbooks across identity, endpoint, cloud, and email
• Contribute to detection rule tuning and threat intelligence integration
• Use AI-driven tools for alert enrichment and workflow automation

📋 Requirements

• 2+ years in a SOC, security operations, or incident response role
• Experience with SIEM platforms and writing detection queries
• Familiarity with EDR platforms and cloud environments
• Comfort using AI systems in security workflows

✨ Nice to Have

• Experience leading complex incident response engagements
• Scripting skills in Python or PowerShell
• Experience with AI agent architectures or LLM-based automation

🎁 Benefits & Perks

• 🌐 Remote-first culture with flexible work arrangements
• 📚 Continual learning and growth opportunities
• 🤝 Collaborative team of experienced threat hunters and engineers
• 🔧 Cutting-edge tools including AI-augmented SOC workflows

📨 Hiring Process

Estimated timeline: 2-3 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min