🛠 Tech Stack

💼 About This Role

You'll lead Field Nation's security operations, owning detection engineering and incident response for a hybrid engineer-analyst role with AI-powered tooling and high ownership. You'll partner with engineering and product to embed security across the organization and scale detection and response capabilities.

🎯 What You'll Do

• Lead complex incident response and post-incident reviews.
• Develop and maintain SIEM correlation rules and detection pipelines.
• Conduct proactive threat hunts using MITRE ATT&CK.
• Build SOAR playbooks to automate response workflows.

📋 Requirements

• 5+ years of cybersecurity experience with 3+ years in SOC/IR.
• Proficiency in Splunk (SPL) or Microsoft Sentinel (KQL).
• Hands-on EDR experience (SentinelOne preferred).
• Python scripting for detection and automation.

✨ Nice to Have

• AI coding assistant experience (Claude Code, GitHub Copilot).
• OWASP LLM Top 10 and MITRE ATLAS familiarity.
• Cloud security credentials (AWS Security Specialty).