Job Summary
An experienced security professional is required to lead incident response efforts and analyze artifacts across the technology stack.
Key Responsibilities
* Investigate suspected security incidents and collaborate with global teams.
* Perform all aspects of the incident response lifecycle from containment to remediation.
* Develop indicators of compromise and integrate them into security tools.
* Analyze forensic artifacts from Windows and Linux systems to identify threat activity.
* Build scripts to automate data collection and analysis tasks.
* Utilize logs and host artifacts to detect reconnaissance and lateral movement.
* Create timelines of attacker activity for reports.
* Write technical reports and documentation.
* Identify gaps in incident response coverage and improve the program.
* Mentor junior analysts and develop training materials.
* Stay current on threat tactics and detection methods.