Identifying, scoping, and managing ongoing customer incidents, developing remediation plans, and augmenting the customer’s security gaps with the necessary skills and resources to improve their security maturity
Tailoring communication to the customer’s level of expertise, providing education and information to help them understand the bigger picture and make educated decisions
Partnering with the Detection Engineering, Intelligence, and Research teams to further investigate identified or emerging threats relevant to our customers
Monitor and analyze security alerts to identify potential threats.
Conduct proactive threat hunting across different environments.
Investigate security incidents and determine root cause.
Globe Life is committed to empowering employees with support and opportunities to succeed in their careers. They foster a caring and innovative culture that enables them to grow and overcome challenges in a connected and collaborative environment.
Using Red Canary’s detection platform to analyze EDR telemetry, alerts, and log sources.
Researching coverage opportunities then creating new detectors, and tune existing ones.
Improving the Detection Engineering workflow through orchestration & automation.
Zscaler accelerates digital transformation, protecting customers from cyberattacks and data loss. They value transparency and constructive debate, building high-performing teams focused on customer obsession, collaboration, ownership, and accountability.
Using Red Canary’s detection platform to analyze EDR telemetry, alerts, and log sources.
Researching coverage opportunities then creating new detectors, and tune existing ones.
Improving the Detection Engineering workflow through orchestration & automation
Zscaler, founded in 2007, aims to make the cloud a safe place for business. They operate the world’s largest security cloud, using AI to protect enterprises from cyberattacks and data loss, fostering an inclusive and supportive culture.
Join a new emerging team who is going to be part of Palo Alto’s Unit 42, working closely with global customers providing the best security in the market. Own an incident lifecycle from outbreak to full remediation. Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats.
Palo Alto Networks is a cybersecurity partner committed to protecting our digital way of life by challenging and disrupting the status quo.
Monitor and analyze security events using SIEM platforms. Investigate and respond to alerts from XDR tools. Conduct proactive threat hunting across endpoints, networks, and cloud environments.
Since 1996, Numerix has provided expertise, analytics and software that redefine pricing and risk management in the financial markets, strengthening its leadership position.
Provide timely and actionable intelligence to support customer intelligence requirements
Collaborate with a global team of threat intelligence analysts to analyze and develop coverage for emerging threats
Develop tactical hunting and strategic threat assessments in support of customer needs
Palo Alto Networks' mission is to be the cybersecurity partner of choice, protecting our digital way of life with a vision for a safer, more secure world. They challenge and disrupt the status quo, seeking innovators committed to shaping the future of cybersecurity.
Monitor alerts from security tools and work towards resolution.
Participate in incident response and perform incident reporting.
Collaborate with team members to develop SOC IR strategies.
CSG empowers companies to build unforgettable experiences, making it easier for people and businesses to connect with, use and pay for the services they value most. CSG's technologies and people have helped some of the world's most recognizable brands solve their toughest business challenges and evolve to meet the demands of today's digital economy.
Research, track, and assess the threat landscape by analyzing relevant threat actors and campaigns.
Analyze and prioritize information to develop actionable intelligence for detection coverage and response readiness.
Partner with Detection Engineering to design and validate threat-based detections through adversary emulation and simulation.
1Password is building the foundation for a safe, productive digital future. They provide password management and access management solutions for businesses. They have surpassed $400M in ARR and have over 180,000 businesses as clients and have a culture that prioritizes collaboration and clear communication.
Analyze cyber threats and produce actionable intelligence.
Support the development of detection capabilities.
Deliver technical briefings and executive-level summaries.
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements.
Investigate and analyze sophisticated cyber threats targeting cloud environments. Identify and track state-backed and financially motivated threat actors. Communicate findings to internal teams, customers, and the public, ensuring clarity and actionable insights.
This position is posted by Jobgether on behalf of a partner company and uses an AI-powered matching process to ensure quick and fair application reviews.
As a Senior Incident Response Developer, you will investigate complex security incidents and build scalable response processes. You'll help enhance security incident response capabilities through relationships with Engineering teams. You will be involved in shaping the Security Incident Response team and acting as Incident Commander to resolve incidents.
Wealthsimple is on a mission to help everyone achieve financial freedom by reimagining what it means to manage your money.
Design, build, and continuously improve threat detections across 1Password’s infrastructure, products, internal tools, and corporate environments.
Lead and support security incident response activities, including investigation, containment, remediation, and post-incident learning.
Collaborate with Security, Infrastructure, and IT teams to improve security visibility, logging quality, and response readiness.
1Password is building the foundation for a safe, productive digital future. They innovated the market-leading enterprise password manager and pioneered Extended Access Management, a new cybersecurity category built for the way people and AI agents work today. Over 180,000 businesses trust 1Password to help their teams securely adopt the SaaS and AI tools they need to do their best work.
Monitor and analyze security events to detect potential threats.
Reverse engineer Windows PE files and other malicious binaries.
Collaborate with various teams to improve product resilience.
Halcyon was formed in 2021 by a team of cyber industry veterans after battling the scourge of ransomware for years at some of the largest global security vendors.
Monitor SIEM alerts, triage incidents, and escalate as needed to ensure timely resolution
Conduct third-party and supply chain risk management reviews, including audit report analysis
Collaborate with engineering, IT, and operations teams to integrate and maintain security controls
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. It identifies top-fitting candidates and shares this shortlist with the hiring company.
Secure client IT assets against cyber threats, including malware, ransomware, and unauthorized access attempts
Monitor and analyze security tools and logs to detect suspicious activity and potential incidents
Investigate, triage, and respond to security incidents, including containment and remediation activities
Stambaugh Ness (SN) is a professional services firm serving clients nationally with a singular focus on architecture, engineering, and related industries. Fast-paced and fast-growing, they have created a close-knit team that genuinely enjoys working together.
Lead incident response efforts for high-severity and complex security events.
Perform advanced threat analysis, including APT detection and analysis of threat actor tactics.
Lead continuous improvement initiatives for SOC processes, workflow automation, and detection coverage.
Brightspeed is providing fast, reliable internet connections and customer experience in twenty states throughout the Midwest and South. They are backed by funds managed by Apollo Global Management and are upgrading copper to fiber optic technologies.
Monitor, investigate, triage, and respond to security alerts.
Perform advanced network analysis and conduct log analysis.
Assist with EDR investigations and support the Incident Response Team.
Industrial Electric Mfg. (IEM) is the largest independent full-line manufacturer of custom power distribution systems in North America. With $1B+ in annual sales and 10,000+ commissioned projects across technology, data centers, commercial, energy, utilities, healthcare, industrial, and infrastructure markets, IEM continues to deliver exceptional product quality, dependable service, and the flexibility to meet complex technical requirements at scale.
Monitor the daily operations of the team, being the primary liaison between analysts and leadership
Oversee response activities for security events and alerts associated with cyber threats, intrusions, or compromises
Be a mentor to Cyber Defense Analysts, providing feedback on the quality of work to analyst(s) and management
Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 22,500 people across 32 countries and corporate headquarters in Dublin, Ireland.
Conduct original, in-depth threat research on advanced adversaries, emerging malware, attack techniques, and evolving TTPs.
Design, develop, and maintain high-fidelity detections aligned to adversary behaviors and techniques.
Serve as a customer-facing technical expert, providing intelligence products, detection engineering and otherwise augmenting their capabilities.
Anomali is the Leading AI-Powered Security Operations Platform that is modernizing security operations. Anomali unifies ETL, SIEM, XDR, SOAR, and the world's largest repository of global intelligence into a single, cloud-native platform that improves detection, speeds investigations, and reduces costs at scale.