Responsibilities:

*Analyze the latest attacker techniques and develop approaches to detect them across the company’s diverse environments and endpoints.

*Define, implement, and tune detective capabilities and data sources to detect and remediate malicious activity.

*Work with engineering and operations teams to implement threat detection signals, deploy new tooling, and improve response capabilities.

*Analyze security data and report on threats and incidents across various platforms and environments.

*Use automation to improve identification and response time and reduce impact when an incident occurs

Requirements:

*BS/MS in Computer Science, Information Systems, Electrical Engineering, or the equivalent in experience and evidence of exceptional ability.

*Excellent understanding and experience in multiple security domains such as intrusion detection, incident response, malware analysis, application security, and forensics.

*Experience detecting abuse and large-scale attacks in a diverse environment.

*Software engineering experience in Python, Ruby, Go, C, JavaScript or other OOP languages.

*Experience in cloud environments (AWS preferred), Linux containers, and orchestration systems (Kubernetes preferred)

*DevOps or security automation experience.

*Experience working with multiple stakeholders such as engineering/operations teams, internal business units, external incident response teams, and law enforcement throughout the incident lifecycle.

*Familiarity with the following detection-related disciplines with deep experience in one or more:

Large scale analysis of log data using tools such as Splunk or ELK.

Security automation using tools such as Phantom or Demisto.

File system, memory, or live response on Windows, MacOS and/or Linux.

Analysis of network traffic from intrusion detection systems and flow monitoring systems.

Host level detection with tools such as auditd, os-query, SysMon

About Moyyn: Moyyn is AI based reverse job platform. Once you apply to the platform, you will be matched with several job offers from our clients and also get recommendations for various job offers. If the clients find your profile interesting, they will get in touch with you directly for interviews. Apply once to the talent pool and get interviews from many companies directly. We are recruiting candidates for this particular job as a recruiter for one of our partner platforms.