🛠 Tech Stack

💼 About This Role

You'll serve as a front-line defender for BeyondTrust's enterprise infrastructure and product integrity, monitoring and responding to security events in a high-stakes environment. You'll work alongside experienced threat hunters and incident responders, contributing to an AI-augmented operating model.

🎯 What You'll Do

• Monitor and triage security alerts across SIEM, EDR, and CSPM platforms.
• Participate in or lead incident response engagements from detection to remediation.
• Contribute to design and tuning of detection rules across SIEM and EDR platforms.
• Use AI-driven tools for alert triage, enrichment, and investigation.

📋 Requirements

• 2+ years in SOC, security operations, or incident response.
• Understanding of MITRE ATT&CK framework, network protocols, and endpoint behavior.
• Experience with at least one SIEM platform and writing detection queries.
• Familiarity with EDR platforms and cloud environments (IaaS preferred).

✨ Nice to Have

• Experience leading complex incident response engagements.
• Scripting and automation (Python, PowerShell) for security workflows.
• Experience with AI agent architectures or LLM-based automation.

🎁 Benefits & Perks

• 🏖️ Flexible remote/hybrid work
• 📈 Continual learning culture
• 🛡️ Collaborative team with sharp analysts
• 🚀 AI-augmented tools daily workflow

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Discussion· 45 min