Respond to security incidents according to the security incident response policy and procedures
Communicate investigation findings to relevant stakeholders to help improve the information security posture
Monitor relevant information sources to stay up to date on current attacks and trends
REWE Group Austria develops innovative IT products and services for its corporate divisions in Austria and abroad. With over 700 employees, they set the tone for modern trade and have a family-friendly culture with flexible hours and remote options.
Lead and execute security incident response, leveraging your deep expertise to manage and mitigate threats across Ivanti’s global footprint.
Uncover both known and unknown threats using advanced incident response techniques, threat hunting, threat intelligence, and a strong understanding of attacker TTPs.
Conduct thorough investigations involving external attacks, insider threats, and digital forensics, ensuring stakeholders stay informed with comprehensive reporting.
Ivanti's mission is to elevate human potential within organizations by managing, protecting and automating technology for continuous innovation. It is through diverse and inclusive hiring, decision-making, and commitment to our employees and partners that they will continue to build and deliver world-class solutions for their customers.
Lead complex security investigations and drive automated response workflows.
Perform host-based triage and forensic analysis across Windows, Linux, and macOS, and conduct cloud-native IR across AWS and Azure.
Integrate threat intelligence into active investigations and operationalize it proactively.
VERSANT is a leading force in news, sports and entertainment and is home to iconic and trusted brands. As an independent, publicly traded company, VERSANT brings together powerhouse cable networks with dynamic digital and direct-to-consumer brands, fueled by innovation.
Lead reporting and produce all TIU products to exceptional standards.
Lead training on intelligence methodologies and structured analytic techniques.
Act as a point of contact for media requests and represent Sibylline at external events.
Sibylline is a leading intelligence and strategic risk consultancy in the security sector. Since 2010, they have supported businesses, governments, and NGOs by providing high-quality risk analysis, due diligence, and consultancy services. They offer an innovative, entrepreneurial, and fast-growing working environment.
Detection, analysis and management of security incidents
Making and evaluating reports
Monitoring the customer’s environment
Deutsche Telekom IT Solutions, a subsidiary of the Deutsche Telekom Group, is Hungary’s most attractive employer in 2025, providing a wide portfolio of IT and telecommunications services. With more than 5300 employees, they continuously develop its four sites and is looking for skilled IT professionals to join its team.
Research trends and techniques related to unauthorised access and proactively share findings.
Aggregate, organize, and analyze data to uncover patterns and vulnerabilities in unauthorized submissions.
Create and maintain documentation and reports covering methods, tools, and vulnerabilities.
Turnitin partners with educators and institutions to develop learning integrity solutions. They are a global organization with team members in over 35 countries committed to ensuring the integrity of global education while meaningfully improving learning outcomes.
Proactively hunt down, analyze, and patch system weak spots before they become a problem.
Act as the calm, collected, and decisive first responder when the digital alarms ring, leading security investigations.
Turn mountains of raw data logs into digestible, actionable insights to keep our defenses sharp.
Miovision is unlocking transportation networks that move people and enable smart, fast, safe communities. They are backed by advanced traffic AI and their innovations in traffic signal planning and operations improve the transportation experience for drivers, cyclists and pedestrians.
Manage event and information intake, including intelligence reports and monitoring ticket queues.
Triage alerts and correlate and analyze events to determine the scope of cybersecurity incidents.
Provide 24x7 on-call support and monitor and manage security incidents using SIEM, SOAR, and DLP tools.
Brightspeed provides fast, reliable internet connections and an awesome customer experience in twenty states throughout the Midwest and South. Backed by funds managed by Apollo Global Management, they are accelerating the upgrade of copper to fiber optic technologies.
Investigate intrusion attempts and perform in-depth analysis of exploits
Monitor and analyze network traffic and alerts
Provide network intrusion detection expertise to support timely and effective decision making of when to declare an incident
AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, they help enterprises deliver on the promise of digital transformation. At AHEAD, they prioritize creating a culture of belonging, where all perspectives and voices are represented, valued, respected, and heard.
Develop and maintain a multi-platform implant written in Rust.
Build and extend C2 server infrastructure, task dispatch, and communications protocols.
Research and implement AV/EDR evasion techniques to keep tooling operational against modern defenses
Horizon3.ai is a remote cybersecurity company dedicated to enabling organizations to proactively find, fix, and verify exploitable attack vectors. They are a fusion of former U.S. Special Operations cyber operators and startup engineers committed to solving common security problems.
Research adversary tradecraft, translate threat intelligence into detection logic
Tune and optimize existing detections to reduce alert fatigue while maintaining detection fidelity
Document detection logic, response guidance, and follow-on analysis to support SOC and incident responders
Fidelity National Financial (FNF) is seeking a Detection Engineer to join our Information Security Office (ISO). They are an Equal Opportunity employer.
Translate adversary understanding into measurable improvements.
Identify and monitor behavioral patterns in security signals.
Produce concise deliverables and targeted deep dives.
College Board helps more than 7 million students a year navigate the path from high school to college and career. They are a mission-driven, not-for-profit membership organization dedicated to excellence in education.
Monitor security events through SIEM and other security tools, performing initial triage and correlating signals across multiple sources.
Execute Incident Response activities, including detection, investigation, containment, remediation, and documentation of security incidents.
Analyze alerts and security anomalies to identify legitimate threats, false positives, and areas requiring escalation.
Pismo provides a comprehensive processing platform for banking, card issuing and financial market infrastructure and helps customers innovate and build the next generation of banking and payment solutions. Pismo’s 500+ employees are located in more than 10 countries around the world.
Assist the efforts of the Global Sanctions Compliance program.
Responsible for first level review, analysis and adjudication of alerts.
Play a key role in conducting sanctions investigations and assessing fraudulent activity.
Zerohash is the leading crypto and stablecoin infrastructure platform and the operating system for digital money, powering the next generation of financial services. Founded in 2017, Zerohash is deeply regulated and compliance-first.
Prospect, identify, and qualify potential customers through inbound and outbound prospecting - calls, emails, and LinkedIn outreach.
Engage with decision-makers in target companies to understand their cybersecurity needs, challenges, and pain points, particularly related to ransomware threats.
Work closely with the sales and marketing teams to support and execute strategies for lead generation, campaigns, and outreach.
Halcyon is the industry’s first dedicated, adaptive security platform that combines multiple proprietary advanced prevention engines along with AI models focused specifically on stopping ransomware. As a remote-native, completely distributed global team, they recognize great talent can exist anywhere.
Play a key role in the strategic and hands-on protection of our enterprise systems.
Responsible for hardening infrastructure and integrating security systems into deployments.
Manage SIEM operations, incident response, and vulnerability reviews.
CBN Secure Technologies Inc. is an award-winning provider of secure Driver & Vehicle solutions to US States. They are a subsidiary of Canadian Bank Note (CBN) Company, Limited, designing and developing industry-leading solutions for various domains like Driver & Vehicle and Border Security.
Own the deployment, configuration, and lifecycle management of endpoint security tooling.
Design and enforce security configuration baselines across Windows, macOS, and Linux systems.
Build and manage configuration enforcement mechanisms to detect and remediate drift on endpoints.
Shield AI, founded in 2015, is a venture-backed deep-tech company with the mission of protecting service members and civilians with intelligent systems. With offices and facilities across the U.S., Europe, the Middle East, and the Asia-Pacific, this company's technology actively supports operations worldwide.
Assist clients in recovering from cyber incidents.
Restore compromised systems and implement effective remediation strategies.
Collaborate with Digital Forensic and Incident Response (DFIR) teams.
Surefire Cyber redefines the incident response model by delivering a swifter, stronger response to cyber incidents. Their client-centric approach reduces stress and provides clients the confidence needed to prepare, respond, and recover from cyber incidents.
Support post-incident recovery efforts, collaborating with DFIR teams to assess the scope and impact of cyber incidents
Participate in restoring compromised systems to a pre-incident state, including data recovery, system configuration, and hardening
Assist in developing and executing tailored remediation plans based on technical, operational, and regulatory requirements
Surefire Cyber is redefining the incident response model by delivering a swifter, stronger response to cyber incidents such as ransomware, email compromise, malware, data theft, and other threats. Their client-centric approach reduces stress and provides clients the confidence needed to prepare, respond, and recover from cyber incidents.