Source Job

• Investigate intrusion attempts and perform in-depth analysis of exploits
• Monitor and analyze network traffic and alerts
• Provide network intrusion detection expertise to support timely and effective decision making of when to declare an incident

AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, they help enterprises deliver on the promise of digital transformation. At AHEAD, they prioritize creating a culture of belonging, where all perspectives and voices are represented, valued, respected, and heard.

• Respond to security incidents according to the security incident response policy and procedures
• Communicate investigation findings to relevant stakeholders to help improve the information security posture
• Monitor relevant information sources to stay up to date on current attacks and trends

REWE Group Austria develops innovative IT products and services for its corporate divisions in Austria and abroad. With over 700 employees, they set the tone for modern trade and have a family-friendly culture with flexible hours and remote options.

• Monitor security alerts and events using various security tools and platforms.
• Participate in the incident response process, including identification, containment, eradication, and recovery.
• Assist in the identification and assessment of vulnerabilities in client systems.

HIKINEX is a cybersecurity company dedicated to safeguarding data and systems. They foster a dynamic and supportive environment where team members are passionate about cybersecurity.

• Manage event and information intake, including intelligence reports and monitoring ticket queues.
• Triage alerts and correlate and analyze events to determine the scope of cybersecurity incidents.
• Provide 24x7 on-call support and monitor and manage security incidents using SIEM, SOAR, and DLP tools.

Brightspeed provides fast, reliable internet connections and an awesome customer experience in twenty states throughout the Midwest and South. Backed by funds managed by Apollo Global Management, they are accelerating the upgrade of copper to fiber optic technologies.

• Triaging inbound support cases
• Solving customer support cases
• Documenting best practices

Tanium is an Autonomous IT company driven by AI and real-time endpoint intelligence, empowering IT and security teams to make their organizations unstoppable. Many of the world’s leading organizations trust Tanium’s single, unified platform for endpoint management and security.

• Monitor security events through SIEM and other security tools, performing initial triage and correlating signals across multiple sources.
• Execute Incident Response activities, including detection, investigation, containment, remediation, and documentation of security incidents.
• Analyze alerts and security anomalies to identify legitimate threats, false positives, and areas requiring escalation.

Pismo provides a comprehensive processing platform for banking, card issuing and financial market infrastructure and helps customers innovate and build the next generation of banking and payment solutions. Pismo’s 500+ employees are located in more than 10 countries around the world.

• Research trends and techniques related to unauthorised access and proactively share findings.
• Aggregate, organize, and analyze data to uncover patterns and vulnerabilities in unauthorized submissions.
• Create and maintain documentation and reports covering methods, tools, and vulnerabilities.

Turnitin partners with educators and institutions to develop learning integrity solutions. They are a global organization with team members in over 35 countries committed to ensuring the integrity of global education while meaningfully improving learning outcomes.

• Develop network threat detectors by leveraging rule-based and ML-based detection strategies.
• Reproduce attacks in a lab environment using live tools and recorded PCAP traffic, and perform threat hunts on aggregated log data, in order to identify malicious behaviors and develop techniques to detect them.
• Collaborate with Threat Research and Data Science teams to gain insight on attacker techniques and take advantage of the latest machine learning models to detect attacker behavior.

ExtraHop reinvents Network Detection and Response (NDR) to help enterprises and organizations stay ahead of emerging threats with unmatched network visibility, context, and control. They are recognized for innovation and a commitment to building a world-class team.

• Administer, configure, manage, patch, upgrade, design, and optimize network and host-based security tools and systems
• Evaluate, install, configure, test, and update network and host-based security systems and hardware
• Develop network and host-based security systems and security operation center knowledge base articles, how-to documents, standard operating procedures, and policies

Tyto Athene delivers mission-focused digital transformation. With over 50 years of experience, they support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

• Conception of security and fraud anomaly monitoring detection.
• Analyses and mitigation of attacks conception and implementing countermeasures coordination with stakeholders.
• Development of security policy focusing on signaling threats.

Deutsche Telekom IT Solutions, a subsidiary of the Deutsche Telekom Group, is Hungary’s most attractive employer that provides IT and telecommunications services. The company has more than 5300 employees and has hundreds of large customers, corporations in Germany and in other European countries.

• Independently manages day-to-day security operations, including threat monitoring and incident triage.
• Conducts systematic reviews of system logs and security alerts to uncover root causes.
• Owns the execution of recurring compliance tasks and audits, ensuring workflows meet data protection and regulatory requirements.

Garner Health aims to transform the healthcare economy by delivering high-quality and affordable care. They partner with employers to redesign healthcare benefits using incentives and data-driven insights, guiding employees to better care at lower costs. They are one of the fastest-growing healthcare technology companies.

• Oversee the operation and maintenance of the trading systems, guaranteeing continuity and stability in the production trading environment.
• Develop automation tools to streamline operational processes, reducing overhead and enhancing efficiency.
• Triage, prioritize and troubleshoot complex network and systems issues, ranging from low-level hardware to in-house software applications.

They participate in a wide variety of marketplaces including global futures, equities, commodities, options, fixed income, and cryptocurrencies. Their culture emphasizes teamwork and focuses on continuous integration and test-driven development.

• Act as a senior escalation point for SOC investigations, providing guidance aligned to Copperleaf’s security architecture and operational practices.
• Lead investigations into security alerts across Copperleaf’s Azure‑hosted environments, identity systems, corporate endpoints, and product infrastructure.
• Track emerging threats relevant to SaaS providers, cloud platforms, Kubernetes, identity infrastructure, and AI‑driven attack techniques.

IFS is a billion-dollar revenue company with 7000+ employees across all continents specialized at AI technology. They enable customers to be their best when it really matters–at the Moment of Service™ and are committed to promoting an inclusive workforce that fully represents diverse cultures, backgrounds, and viewpoints.

• Overseeing and resolving technical support requests and cybersecurity issues efficiently.
• Conducting training sessions for new customer team members and providing deep dives into new platform features.
• Handling the setup and configuration of new features and specialized functionality for existing clients.

MixMode provides AI-powered cybersecurity solutions, pioneering a patented third-wave, context-aware AI approach. They cater to large organizations with big data workloads, including those in enterprise, critical infrastructure, the US Department of War, and the US Intelligence Community.

• Research adversary tradecraft, translate threat intelligence into detection logic
• Tune and optimize existing detections to reduce alert fatigue while maintaining detection fidelity
• Document detection logic, response guidance, and follow-on analysis to support SOC and incident responders

Fidelity National Financial (FNF) is seeking a Detection Engineer to join our Information Security Office (ISO). They are an Equal Opportunity employer.