Source Job

• Lead security incidents end-to-end, from detection and triage through containment and post-incident review, acting as incident commander.
• Conduct hands-on investigations across cloud and endpoint environments to determine root cause and impact, and partner with Observability & Automation to improve detections and build automated playbooks.
• Collaborate with Security, Infrastructure, and Product teams to identify gaps, strengthen the incident response lifecycle, and communicate effectively with both technical and non-technical stakeholders.

Affirm is reinventing credit to create honest and friendly financial products like buy now, pay later services without hidden fees. As a remote-first fintech company, they cultivate a collaborative and team-first culture for their skilled professionals.

• Supports the day‑to‑day operation of ICF’s information security program under the guidance of senior security staff and the Cyber Security Manager.
• Assists with monitoring, maintaining, and documenting security controls and technologies, including endpoint protection, access controls, vulnerability management, and security event monitoring.
• Helps identify, document, and escalate security issues, supports routine security operations, and contributes to security assessments and reporting.

ICF is a global advisory and technology services provider that combines unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. They have approximately 9,000 employees, from business analysts and policy specialists to digital strategists, data scientists and creatives.

• Analyze, investigate, document and report on security alerts and/or potential security incidents identified in customer environments.
• Process security investigation cases in a thorough, yet timely manner.
• Serve as an incident coordinator for security events that require urgent response, containment, and remediation.

CyberSheath Services International LLC is a rapidly growing Security and IT Managed Services Provider primarily focused on providing Cybersecurity services to the Defense Industrial Base (DIB). They integrate compliance and threat mitigation efforts and eliminate redundant security practices.

• Support and maintain the company-wide information security program.
• Facilitate IT risk assessments with business units and define acceptable risk levels.
• Monitor the external threat environment and advise stakeholders on emerging risks.

Zensurance is a leading InsurTech company redefining commercial insurance for Canadian businesses. They leverage advanced technology and industry expertise to deliver tailored insurance solutions. Zensurance values ownership, collaboration, and innovation within their team, which has been recognized multiple times by Deloitte as a Technology Fast 50/500 company.

• Execute on milestones for end-to-end SecOps & Threat initiatives in accordance with the Security roadmap.
• Identify and respond to complex security incidents, including system compromise, intrusion attempts, and/or denial of service attacks by conducting continuous monitoring, vulnerability assessments, and log analysis.
• Research emerging threats, publicly disclosed vulnerabilities or attack vectors, and proactively push mitigating controls to products and services.

6sense's mission is to multiply what matters: growth, retention, and efficiency. They envision a future where companies, teams and people reach their full potential. People are the heart and soul of the company with a growth mindset culture that is represented in all that they do.

• Monitor and analyze security alerts in Splunk to identify suspicious or malicious activity.
• Support incident handling activities, including triage, investigation, escalation, and documentation of security events.
• Collaborate with internal teams to resolve security issues and improve monitoring and response processes.

Signet Jewelers is the world's largest retailer of diamond jewelry, operating more than 2,800 stores worldwide under iconic brands. Signet Jewelers is a people-first company, proud of their heritage, international presence, diversity, inclusion and equity.

• Supports 24x7 cybersecurity monitoring, incident detection, alert triage, ticket response, escalation management, and operational reporting activities.
• Assists in monitoring enterprise, cloud, and tactical network environments, identifying potential security events and incident response.
• Role supports continuous monitoring operations utilizing SIEM, IDS/IPS, EDR/XDR, vulnerability management, and cloud security.

By Light Professional IT Services LLC readies warfighters and federal agencies with technology and systems engineered to connect, protect, and prepare individuals and teams for whatever comes next. Headquartered in McLean, VA, By Light supports defense, civilian, and commercial IT customers worldwide.

• Lead security strategy across infrastructure, cloud systems, and enterprise applications.
• Drive SOC 2, ISO 27001, and ISO 42001 readiness/certifications.
• Own vulnerability management, threat monitoring, and incident response workflows.

SaaS Talent is a recruiting company, and a hiring, business development and growth partner with 20+ years of experience in SaaS and Hi-Tech that helps you scale and transform your business. They've worked with 100+ companies and helped them achieve their goals.

• Build detections and security signal pipelines in Datadog.
• Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security.
• Act as the technical lead during security incidents, including investigation and remediation.

Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our company appears to be a remote-first company, and values diversity and inclusion.

• Participate in the Security Incident Response Process.
• Conduct review of security logs from systems and correlate and identify potential incidents or areas of risk.
• Support vulnerability and penetration tests on target systems.

Kinaxis is a global leader in modern supply chain orchestration, powering global supply chains and supporting the people who manage them. They are a global organization with over 2000 employees around the world with a best-in-class HQ in Ottawa, Canada.

• Build and maintain a SIEM to collect and analyze logs, writing detections and alerts.
• Design and deploy canary tokens and early warning mechanisms to detect threats.
• Investigate security incidents end-to-end and build runbooks to scale response capabilities.

Quora's mission is to grow the world's collective intelligence, providing platforms for knowledge sharing and AI interaction. It's a remote-first company with passionate, collaborative, and high-performing global teams, fostering a culture rooted in transparency, idea-sharing, and experimentation.

• Participate in a rotating on-call, based on the number of team members.
• Serve as a hybrid Incident Response (IR) and Digital Forensics (DFIR) function.
• Perform forensic analysis on a variety of networks, hosts, digital media, and operating systems/environments.

Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. We pride ourselves on providing our employees with great benefits and career development opportunities and are committed to growing careers as we are to building world-class IT solutions.

• Owns the enterprise security architecture and multi year roadmap.
• Establishes and governs enterprise identity, access, and data protection strategy.
• Defines and executes cloud security strategy across Azure and AWS.

Vail Health is the world’s most advanced mountain healthcare system. It consists of an updated 520,000-square-foot, 56-bed hospital that provides exceptional care to all of our patients, with the most beautiful views in the area, located centrally in Vail.

• Partner with engineers and security SMEs to design, improve, and implement Identity and Access Management (IAM) solutions for VA.gov products.
• Analyze security metrics and access management trends to inform how the program approaches security architecture.
• Develop and document requirements for IAM solutions including identity lifecycle, role management, separation of duties, and access workflows.

Oddball believes that the best products are built when companies understand and value the things they are working on. They value learning and growth and the ability to make a big impact at a small company.

• Perform systems administration and maintenance including patching and vulnerability scanning.
• Primarily support AWS environments, including Windows and Linux virtual machines.
• Troubleshoot issues across network, compute, application, and identity layers.

Tyto Athene delivers mission-focused digital transformation through IT services and solutions. They have over 50 years of experience and foster a collaborative, innovative, and mission-driven environment.

• Execute periodic vulnerability scans across infrastructure and cloud platforms, supporting compliance.
• Analyze and prioritize scan results based on risk severity, reporting findings to stakeholders.
• Collaborate with IT and product teams to track remediation within SLAs and support mitigation strategies.

Moniepoint Inc. is Africa's all-in-one financial ecosystem, providing seamless payments, banking, credit, and business management tools to 10 million businesses and individuals. The company operates profitably, processes $22 billion monthly, and fosters a culture of innovation, teamwork, and growth.

• Deliver world-class cyber security assessment and advisory services while ensuring customer satisfaction.
• Work effectively as a team member on large engagements and remain current on technical knowledge.
• Demonstrate GuidePoint’s Core Values at all times: Take Charge and Complete Our Mission.

GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1,200 employees and focus on core values to establish an enjoyable workplace atmosphere.

• Owning day-to-day management of the cybersecurity team across all three practice areas, providing direction, removing blockers, and maintaining accountability.
• Conducting performance reviews and delivering ongoing feedback that supports the growth and retention of senior-level contributors.
• Fostering a collaborative, high-trust culture where experienced engineers can operate with autonomy while staying aligned to organizational goals.

Inductive Automation champions industrial automation innovation with a mission to empower customers to swiftly turn great ideas into reality. The company removes technological and economic obstacles by creating and delivering solutions. They value diversity, fun, and flexibility are ingrained into their work culture.

• Receive and own L2 escalations across all severity levels; take over technical lead role on Sev2+.
• Perform deep-dive endpoint triage via EDR: process tree analysis, remote artifact collection, behavioral event review, and custom detection rule evaluation.
• Conduct structured threat hunts in the SIEM using detection rule logic, event correlation queries, and multi-source pivoting.

AlphaSense empowers the world’s most sophisticated companies to make decisions with confidence, providing market intelligence and search built on proven AI. We have over 2,000 employees across the globe with offices in the U.S., U.K., Finland, India, Singapore, Canada, and Ireland and are trusted by over 6,000 enterprise customers.

• Translates high-level departmental strategy into team-level goals.
• Takes responsibility for the performance, reliability, and culture of the team.
• Drives continuous improvement across workflows, processes, and operational practices.

Automox is a cloud-native IT operations platform that helps modern organizations. They are trusted by more than 2,500 leading companies and MSPs worldwide, including NASA, Yale, Xerox, Allbirds, and Unicef.