Job Role Summary
We are seeking an experienced Information Security Engineer to join our global security team in Cork, Ireland. This is a critical role within our Cyber Incident Response Team (CIRT), responsible for managing and responding to security incidents across our global operations.
Main Responsibilities
* Act as the L3 escalation point for high-severity security incidents within the global 24/7 SOC.
* Lead complex investigations into advanced cyber threats, including malware outbreaks, targeted attacks, and persistent threats.
* Provide expert-level guidance on containment, mitigation, and remediation strategies.
* Proactively hunt for hidden threats within enterprise networks using threat intelligence and behavioral analytics.
* Develop and refine threat detection rules to improve SOC visibility.
* Assess emerging threats and provide actionable recommendations to enhance security posture.
* Design and implement automated workflows to enhance security event triage and response.
* Leverage SOAR platforms to streamline incident response.
* Collaborate with security architects and engineers to enhance detection and response capabilities.
* Perform root cause analysis on security incidents and recommend improvements to security controls.
Required Skills & Qualifications
* Extensive hands-on experience in Cybersecurity Incident Response or Security Operations.
* Strong background in SOC operations, SIEM, threat intelligence, and digital forensics.
* Expertise in investigating malware, phishing, web attacks, insider threats, and advanced persistent threats (APTs).
* Experience working with security automation and orchestration tools (SOAR).
* Familiarity with scripting languages such as Python, PowerShell, or Bash for security automation.
* Strong understanding of MITRE ATT&CK framework, TTPs (Tactics, Techniques, and Procedures), and cyber kill chain.
* Hands-on experience with cloud security (AWS, Azure, GCP) is a plus.
* Certifications such as GCIH, GCFA, CISSP, CISM, or OSCP are highly desirable.