Lead the identification, triage, and validation of security incidents, acting as the ultimate escalation point for the SOC.
Drive organizational incident readiness by designing and executing practical response exercises to ensure first responders are prepared at all levels.
Lead cross-functional Post-Incident Reviews to extract critical lessons; drive specific tooling and process enhancements that harden organizational defenses.
Own and lead incident response process and actively investigate events.
Prioritize alerts based on risk and collaborate with stakeholders for remediation.
Design, implement, and maintain comprehensive security dashboards and generate periodic reports.
Deel is the all-in-one payroll and HR platform for global teams with a vision to unlock global opportunity for every person, team, and business. As one of the largest globally distributed companies, Deel's team of 7,000 spans more than 100 countries and speaks 74 languages.
Design, implement, and maintain advanced detection rules across SIEM, EDR, and Cloud platforms.
Develop complex automated response playbooks for multi-stage incidents and integrate security tools via APIs.
Co-lead the organization's threat hunting program, defining strategy, methodology, and campaign planning.
AlphaSense is a market intelligence and search platform powered by AI, helping companies make informed decisions with insights from various content sources. With over 2,000 employees globally and offices in multiple countries, they serve over 6,000 enterprise customers, including a majority of the S&P 500.
Acting as a senior escalation point and incident coordinator for security incidents across Canva’s cloud, endpoint, and SaaS environments.
Leading and actively participating in security incident response, from initial detection through investigation, containment, eradication, and recovery.
Performing deep forensic analysis to determine scope, impact, and root cause, and translating technical findings into clear outcomes for stakeholders.
Canva is a design platform. They have campuses in Sydney and Melbourne and co-working spaces in Brisbane, Perth and Adelaide.
Lead deep-dive investigations across SIEM/EDR, cloud, and network telemetry; build timelines and determine scope and impact.
Drive case direction by forming and testing hypotheses; identify containment and remediation actions with clear rationale.
Mentor and coach SOC Analysts; provide structured feedback on investigations, ticket quality, and incident handling.
Cyber Advisors (CA) is a rapidly growing Cybersecurity Consulting firm and MSP. They believe in inclusion and is dedicated to continued employee development, therefore CA wants candidates who focus on innovation and results.
Provide security monitoring and incident response of cyber security events.
Monitor and analyze logs and alerts to identify actionable security incidents.
Provide proactive “threat hunting” to detect incidents.
SonicWall is a cybersecurity company with more than 30 years of expertise. They are recognized as a leading partner-first company, ensuring their partners and their customers are never alone in the fight against cybercrime.
Deliver exceptional support experiences through security expertise and empathetic communication.
Provide expert-level advisory services on complex security questions and product issues.
Drive Security Operations team efficiency through process creation, optimization, and innovative feature ideas.
Blumira is a security operations platform built for growing teams and partners supporting them. They integrate comprehensive visibility, tools, and expert guidance to give IT and security teams peace of mind. The team is passionate about putting resilience in reach for every organization and helping teams build their own expertise.
Lead the identification, triage, escalation, and resolution of incidents to minimize customer and business impact.
Provide timely, clear, and professional communication to internal stakeholders throughout the incident lifecycle.
Develop, maintain, and improve incident management processes, procedures, runbooks, and playbooks.
NetDocuments is the world’s #1 trusted cloud-based content management and productivity platform that helps legal professionals do their best work. They strive to win together through passionate hard work, exploring new things and recognizing every interaction matters.
Lead execution of the enterprise information security program.
Oversee threat detection/response, vulnerability management, and incident response processes.
Partner with Engineering and Infrastructure teams to secure cloud environments and CI/CD pipelines.
bswift transforms benefits administration, making it simpler and smarter. They serve thousands of companies and millions of people nationwide, reducing administrative burdens and freeing HR teams to focus on creating thriving, people-first workplaces.
Support the client through engineering, management, and monitoring of SOC systems.
Provide expertise for incident response activities and digital forensics state preservation.
Stay current with the latest technologies and quickly learn new technologies.
SpecterOps provides security operations services to clients. They are a service-based information security organization that values passionate curiosity, consistent improvement, and empathy.
Lead the front line of the Security Operations Center.
Maximize detection surface area as a strategic leader.
Prepare the next generation of security analysts.
Huntress is a fully remote, global team dedicated to breaking down cybersecurity barriers. Founded in 2015 by former NSA cyber operators, we protect businesses with enterprise-grade security products, safeguarding 4M+ endpoints and 7M+ identities worldwide.
Lead comprehensive security audits of client security operations programs.
Analyze security monitoring and alerting to perform a gap analysis.
Conduct cyber risk assessments using industry frameworks.
They build cybersecurity software and solutions. Palo Alto Networks challenges the status quo, and they are looking for innovators who are as committed to shaping the future of cybersecurity as they are.
Serve as the primary communication link between our expert MDR analysts and our customers.
Bridge the gap between technical incident response activities and customer understanding by onboarding new clients, managing communications, and answering technical questions.
Own the customer communication lifecycle during ongoing incidents, ensuring timely updates, clarity, and alignment on next steps.
Palo Alto Networks is united by a shared mission—to protect our digital way of life. They thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge technology and bold thinking. They value trust, accountability, and shared success where your work truly matters.
Define and mature the Adversary Pursuit program, directing threat hunts and technical table top exercises.
Identify and prioritize areas for improvement based on threat hunt findings.
Collaborate with Offensive Security to enhance threat detection and Security Operations to improve response capabilities.
Flock Safety is a safety technology platform, helping communities by providing a proactive approach to crime prevention and security. They connect cities, law enforcement, businesses, schools, and neighborhoods in a nationwide public-private safety network.
Define security detection program strategy and roadmap.
Oversee development, testing, and maintenance of detection logic.
Lead and mentor a high-performing team of security operators.
Cribl helps solve IT and Security's data needs. They foster a collaborative, curious, and motivated team environment where employees are passionate about putting customers first and believe in empowering our employees to do their best work, wherever they are.
Analyse incoming threat signals to produce actionable intelligence products.
Maintain intelligence infrastructure and automation workflows.
Conduct independent research on emerging threats and maintain a library of adversaries.
Canva is a design platform that enables users to create a variety of visual content. They have offices in Sydney and Melbourne, as well as co-working spaces in other Australian cities, and they values a flexible work environment.
Own the configuration, tuning, and management of our SIEM solution.
Perform architecture reviews, code reviews, and infrastructure configuration reviews.
Maintain and optimize a vulnerability management CI/CD pipeline within our container/application delivery infrastructure.
Engine is transforming business travel into something personalized, rewarding, and simple. More than 20,000 companies already rely on Engine to support over 1 million travelers and billions in annual bookings each year.
Use all-source intelligence to monitor security incidents and trends.
Support the Client’s trust and safety function to monitor and respond to issues.
Escalate security incidents to client stakeholders, following efficient procedures.
Sibylline is a leading intelligence and strategic risk consultancy in the security sector. Since 2010 they have supported businesses, governments and NGOs through the provision of high-quality risk analysis, due diligence and consultancy services.
Serve as Incident Commander, leading real-time response efforts, managing communication across teams, triaging issues, and driving resolution of high-priority incidents.
Execute documented runbooks for troubleshooting and resolving production incidents involving AWS services and Kubernetes Clusters.
Collaborate post-incident with engineering teams, performing root cause analysis, documenting lessons learned, and driving the implementation of durable solutions.
EBay is a global ecommerce leader that is changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world and the team fosters an inclusive and collaborative culture, encouraging open communication, continuous learning, and professional growth.
Lead incident response as Incident Commander, coordinating teams, communications, and service restoration
Produce executive-level incident reports, run RCAs, and drive continuous improvement
Enforce change management and risk assessment for production changes
Truelogic is a leading provider of nearshore staff augmentation services headquartered in New York, delivering top-tier technology solutions to companies of all sizes. Their team of 600+ highly skilled tech professionals, based in Latin America, drives digital disruption by partnering with U.S. companies on their most impactful projects.
Serve as the lead strategic advisor and subject matter expert for customers undertaking a full-scale SOC modernization with XSIAM.
Lead multi-national SOC transformation programs, consolidating fragmented detection and response processes into a unified, AI-driven platform.
Direct enterprise-scale XSIAM deployments, guiding customers from initial strategy through full operationalization.
Palo Alto Networks' mission is to be the cybersecurity partner of choice, protecting our digital way of life. They challenge and disrupt the way things are done, and are looking for innovators committed to shaping the future of cybersecurity.