Design, build, and improve automated evidence collection and SOAR playbooks to increase incident investigation speed and consistency.
Integrate SIEM, EDR, IAM, and other platforms to enable unified response actions and stronger analyst context.
Develop scripts and tooling supporting triage, containment, forensic collection, and operational response workflows.
NBCUniversal is a leading media and entertainment company that creates and distributes world-class content across film, television, and streaming, and operates global theme parks. A subsidiary of Comcast Corporation, it champions an inclusive culture and strives to attract and develop a talented workforce.
Perform in-depth analysis, triage, and response to security threats following documented policies and playbooks.
Monitor and analyze security events using SIEM, EDR, and assess risk levels of cyber threats.
Escalate higher-risk events and collaborate with incident response teams to drive incident handling.
Experian is a global data and technology company that powers opportunities for people and businesses by redefining lending, preventing fraud, and creating digital solutions. With 23,300 employees across 32 countries, the company emphasizes inclusion, work-life balance, and has been recognized as a World's Best Workplace in 2024.
Protect on-premise and cloud infrastructure, detect and respond to advanced threats, and improve security posture through risk analysis and vulnerability management.
Manage and optimize security tools like SIEM, EDR, and IDS/IPS, and perform proactive threat hunting to anticipate new attack techniques.
Assess security controls for compliance, analyze threat trends, and participate in infrastructure initiatives to adhere to industry best practices.
Clear Capital is a national real estate analytics, data solutions, and valuation technology company. Since 2001, the company has focused on building confidence in real estate decisions, with a team that values integrity, kindness, and attention to detail.
Design, implement, and optimize security monitoring, incident response, and detection capabilities across modern cloud and infrastructure ecosystems.
Build and maintain SIEM and log management capabilities, ensuring centralized log collection, normalization, and retention policies.
Automate operational security processes such as alert enrichment, incident notifications, and response orchestration.
Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. They operate as a partner company managing applications and next steps, fostering a collaborative, transparent, and innovation-driven culture with a focus on professional growth and well-being.
Lead the development, rollout, and operations of security operations tools and services such as SIEM, EDR, NDR, email, and cloud, building detection rules, automated playbooks, and integrations.
Apply a detections-as-code approach with version-controlled, peer-reviewed detection rules tuned against alert quality metrics.
Architect and implement security engineering capabilities including endpoint security, data loss prevention, email security, network security, SIEM enhancements, detection engineering, and security automation.
Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to govern interactions across the modern enterprise. It is a global team with a culture of innovation, respect, and fairness, backed by strategic investment from TPG.
Monitor, investigate, and respond to security detections across the SIEM, driving alerts to resolution.
Develop, tune, and maintain SIEM use cases and correlation rules to improve detection coverage.
Build and deliver operational reports and dashboards from available SIEM log source data.
Authentic8 provides Silo, a cloud-native platform that enables digital analysts to conduct secure, anonymous investigations across the globe. They serve over 750 of the world's most sophisticated organizations, from government agencies to commercial entities, with a culture of integrity, collaboration, and transparency.
Monitor and investigate security alerts and events across enterprise environments
Perform proactive threat hunting and support incident response efforts
Use Splunk SIEM for log analysis and work with EDR technologies like CrowdStrike and Cisco AMP
Cyderes builds practical Identity & Access Management and Exposure Management programs, helping organizations stop active threats fast with Managed Detection & Response integrated with existing tools. The company is a Great Place to Work® Certified™ global team operating across the United States, Canada, United Kingdom, and India.
Lead the team responsible for detecting, investigating, responding to, and learning from security events
Manage and coach a team of engineers while remaining close to technical work such as detection design, alert tuning, and incident response
Manage relationships with security operations vendors and work closely with Security, Engineering, IT, and Compliance to protect patient and provider data
Rula is a remote-first company dedicated to making mental healthcare work for everyone. We believe mental health is as important as physical health and aim to create a world where it is embraced as an integral part of well-being.
Monitor logs, alerts, and telemetry to detect threats across infrastructure and cloud environments.
Perform in-depth security analysis and investigations to assess risk and identify root causes.
Coordinate and execute incident response efforts including containment, mitigation, and recovery.
Binance.US is a licensed and regulated U.S. crypto platform providing secure access to over 190 cryptocurrencies. As a remote-first team, we innovate to bridge traditional finance and Web3, helping bring financial freedom within reach for all.
Lead the architecture, deployment, and sustainment of the enterprise SIEM platform to support the client's Security Operations Center (SOC).
Onboard diverse data sources and develop correlation searches, dashboards, and data models to enable threat detection and incident response.
Integrate SIEM with SOAR, EDR, CDM, and identity platforms, and apply secure configurations to meet federal compliance requirements.
Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. Named one of the fastest growing privately held companies by Inc. 5000 and Best Places to Work in the D.C. area, the company prides itself on providing employees with great benefits and career development opportunities.
Monitor security tools and systems to analyze logs and alerts for suspicious activity, investigating potential threats and determining real incidents.
Administer SOC tools including scripting, customizations, report building, alert modifications, and automations to minimize risk and business interruptions.
Participate in disaster recovery and BCP events, documenting findings and process roadmaps for future reference and improvement.
Mercury Insurance helps people reduce risk and overcome unexpected events, with over 60 years of experience. It is a midsize company recognized as one of America's Best Midsize Employers for 2026, fostering a collaborative and inclusive culture.
Develop new cyber detections for threats using SIEM and other security tooling.
Assess software and service requests and deploy solutions to secure infrastructure, data, and people.
Respond to security incidents and drive mitigation and remediation efforts.
Stack develops revolutionary AI and autonomous systems for the trucking industry to enhance safety and efficiency. The team has decades of experience deploying real world systems and is committed to building a culture of inclusion and innovation.
Lead and oversee security operations, including SOC activities, detection engineering, incident response, and exposure management.
Build, mentor, and develop the Cyber Defense team through hiring, coaching, and talent retention.
Continuously improve detection capabilities and response procedures using threat intelligence and lessons learned.
Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. It processes applications and shares shortlists with employers for final decisions.
Build into the product by writing investigation flows, building integrations with security tools, and fixing bugs.
Evolve the investigation logic and pipelines to handle new classes of security alerts, balancing accuracy, performance, and maintainability.
Contribute directly to the Python codebase while influencing architectural decisions and long-term product strategy.
Dropzone AI scales cybersecurity beyond human limits by augmenting security engineers with AI specialists. The venture-backed company is disrupting the $200B+ cybersecurity market and has a team with deep experience in cybersecurity, AI/ML, and SaaS.
Design and implement SOAR playbooks and security automation workflows to streamline SOC operations.
Build integrations between SOAR platforms and security technologies using APIs, scripting, and custom connectors.
Administer SOAR platforms and collaborate with SOC teams to optimize incident response and automation initiatives.
Jobgether uses AI-powered matching to connect candidates with hiring companies. They operate as a platform focused on efficient recruitment, with a remote-first and inclusive culture.
Monitor IT infrastructure and analyze alerts from SIEM and EDR systems.
Perform malware analysis and behavioral analysis to detect anomalies.
Support proactive threat hunting using AI-based tools and document findings.
RTB House is a demand-side platform that uses proprietary Deep Learning AI algorithms to help brands grow. Founded in 2012, it operates in 90+ markets and embraces a private-by-design, innovative culture.
Lead and support the response to all security events and incidents across Twilio's global infrastructure, services, and applications.
Work cross-collaboratively to solve challenges related to a broad spectrum of threat actors and improve security posture.
Own the security incident lifecycle, participate in on-call rotation, and conduct post-incident betterments.
Twilio shapes the future of communications with innovative solutions for hundreds of thousands of businesses, empowering millions of developers worldwide. The company embraces a remote-first work culture and a strong culture of connection and global inclusion, fostering a vibrant and diverse team.
Lead security operations including vulnerability management, incident response, and SIEM platform maturity.
Administer Microsoft security tools (Defender, Purview, Entra) and support compliance frameworks like SOC 2 and HITRUST.
Drive risk reduction through security awareness, risky user remediation, and cross-functional collaboration.
Sequel develops next-generation drug-delivery advancements, starting with the twiist Automated Insulin Delivery System for diabetes management. It is headquartered in New Hampshire and fosters a culture of hard work, fun, and support.
Monitor security events and provide technical analysis on alerts.
Lead information security incidents and employee investigations, developing response strategies.
Deliver security guidance and coordinate building services to support security operations.
Samsara is the pioneer of the Connected Operations Cloud, helping organizations that depend on physical operations harness IoT data to improve safety, efficiency, and sustainability. As a recently public company with a culture that encourages rapid career development, they support a flexible, employee-led remote model.
Monitor and triage alerts from security tools such as SIEM, EDR/XDR, firewalls, and cloud security platforms.
Conduct initial investigation and documentation of potential security incidents and escalate as needed.
Support identity and access management tasks, including user provisioning, access reviews, and MFA/SSO support.
Make-A-Wish grants life-changing wishes for eligible children. As the world's largest wish-granting organization, it fosters a community-oriented environment and warmly embraces wish families, volunteers, and colleagues.