Analyze, investigate, document, and report on security alerts or potential incidents in customer environments.
Process security investigation cases thoroughly and timely, and serve as an incident coordinator for urgent response and remediation.
Provide continuous feedback on process improvements and stay up-to-date on security training and emerging threats.
CyberSheath is a rapidly growing managed security services provider focused on cybersecurity for the Defense Industrial Base. They have a small but expanding team and emphasize a fully remote work culture.
Monitor, triage, and analyze security alerts and log data across enterprise security platforms, including SIEM and detection technologies.
Perform in-depth analysis of exploits, attacker behavior, and anomalous activity across endpoint, identity, network, cloud, and application data sources.
Support incident response activities, improve detections, and contribute to information security projects that strengthen overall security posture.
AHEAD builds platforms for digital business by weaving together advances in cloud infrastructure, automation and analytics, and software delivery. The company prioritizes a culture of belonging and is an equal opportunity employer.
Monitor, investigate, and respond to security detections across the SIEM, driving alerts to resolution.
Develop, tune, and maintain SIEM use cases and correlation rules to improve detection coverage.
Build and deliver operational reports and dashboards from available SIEM log source data.
Authentic8 provides Silo, a cloud-native platform that enables digital analysts to conduct secure, anonymous investigations across the globe. They serve over 750 of the world's most sophisticated organizations, from government agencies to commercial entities, with a culture of integrity, collaboration, and transparency.
Monitor logs, alerts, and telemetry to detect threats across infrastructure and cloud environments.
Perform in-depth security analysis and investigations to assess risk and identify root causes.
Coordinate and execute incident response efforts including containment, mitigation, and recovery.
Binance.US is a licensed and regulated U.S. crypto platform providing secure access to over 190 cryptocurrencies. As a remote-first team, we innovate to bridge traditional finance and Web3, helping bring financial freedom within reach for all.
Monitors, investigates, and responds to cybersecurity events and alerts across various security platforms.
Manages data loss prevention and insider risk alerts, collaborating with IT and business stakeholders.
Supports continuous improvement of detection capabilities through alert tuning and process optimization.
USAP is a company that safeguards organizational data and technology assets through cybersecurity operations. The size and culture are not specified, but the job emphasizes collaboration, continuous improvement, and a secure technology environment.
Manage and optimize SIEM use cases to enhance threat detection and incident response.
Analyze security events and lead threat hunting activities to identify emerging risks.
Investigate incidents and produce technical documentation for corrective actions.
Inetum is a European leader in digital services, helping businesses and public sector entities achieve digital transformation. With 28,000 consultants and specialists across 19 countries, the company generated €2.5 billion in sales in 2023 and fosters a collaborative and innovative culture.
Perform in-depth analysis, triage, and response to security threats following documented policies and playbooks.
Monitor and analyze security events using SIEM, EDR, and assess risk levels of cyber threats.
Escalate higher-risk events and collaborate with incident response teams to drive incident handling.
Experian is a global data and technology company that powers opportunities for people and businesses by redefining lending, preventing fraud, and creating digital solutions. With 23,300 employees across 32 countries, the company emphasizes inclusion, work-life balance, and has been recognized as a World's Best Workplace in 2024.
Handle complex security incidents, leading deep investigations and driving remediation actions.
Participate in a 24/7 on-call rotation to ensure timely response to critical security incidents.
Mentor L1/L2 analysts and drive improvements in detection capabilities and incident readiness.
Eurofins is an international life sciences company providing analytical testing services to ensure products are safe and authentic. With over 65,000 staff across 950+ laboratories in 59 countries, it offers a multicultural and entrepreneurial work environment.
Monitor security events and provide technical analysis on alerts.
Lead information security incidents and employee investigations, developing response strategies.
Deliver security guidance and coordinate building services to support security operations.
Samsara is the pioneer of the Connected Operations Cloud, helping organizations that depend on physical operations harness IoT data to improve safety, efficiency, and sustainability. As a recently public company with a culture that encourages rapid career development, they support a flexible, employee-led remote model.
Respond to security incidents as part of a distributed 24x7 on-call schedule, triaging and containing events.
Conduct security investigations and forensics across data sources to determine event timelines and impact.
Build automations leveraging AI and agentic platforms to expedite incident response and scale team impact.
Databricks is the data and AI company, providing a unified platform for data, analytics, and AI. More than 10,000 organizations worldwide, including over 50% of the Fortune 500, rely on Databricks, which fosters a diverse and inclusive culture.
Lead security operations including vulnerability management, incident response, and SIEM platform maturity.
Administer Microsoft security tools (Defender, Purview, Entra) and support compliance frameworks like SOC 2 and HITRUST.
Drive risk reduction through security awareness, risky user remediation, and cross-functional collaboration.
Sequel develops next-generation drug-delivery advancements, starting with the twiist Automated Insulin Delivery System for diabetes management. It is headquartered in New Hampshire and fosters a culture of hard work, fun, and support.
Monitor security alerts and assist in triaging suspicious activity using SIEM tools.
Collaborate with senior analysts to investigate potential threats and support incident response efforts.
Participate in threat hunting and vulnerability review exercises to identify and mitigate risks.
HealthEdge provides software solutions for the healthcare industry. They have a Center of Excellence structure with experienced security professionals, fostering a collaborative and growth-oriented culture.
Monitor IT infrastructure and analyze alerts from SIEM and EDR systems.
Perform malware analysis and behavioral analysis to detect anomalies.
Support proactive threat hunting using AI-based tools and document findings.
RTB House is a demand-side platform that uses proprietary Deep Learning AI algorithms to help brands grow. Founded in 2012, it operates in 90+ markets and embraces a private-by-design, innovative culture.
Perform investigations into detected threats and leverage security products to analyze, contain, and remediate threats in customer environments.
Provide customers with thorough reports of actions taken to ensure clarity on environment cleanup and protection strategies.
Collaborate with Detection Engineering, Threat Hunting, Intel, and Product teams to develop innovative methods for timely threat remediation.
Zscaler accelerates digital transformation by providing a cloud-native Zero Trust Exchange platform that secures users, devices, and applications from cyberattacks and data loss. The company fosters a culture of execution centered on customer obsession, collaboration, ownership, and accountability, with a focus on innovation and transparency.
Protect on-premise and cloud infrastructure, detect and respond to advanced threats, and improve security posture through risk analysis and vulnerability management.
Manage and optimize security tools like SIEM, EDR, and IDS/IPS, and perform proactive threat hunting to anticipate new attack techniques.
Assess security controls for compliance, analyze threat trends, and participate in infrastructure initiatives to adhere to industry best practices.
Clear Capital is a national real estate analytics, data solutions, and valuation technology company. Since 2001, the company has focused on building confidence in real estate decisions, with a team that values integrity, kindness, and attention to detail.
Act as the first responder for security alerts, triaging detection signals and escalating appropriately.
Handle customer-facing security operations cases including account recovery and access disputes.
Support incident response activities on an on-call rotation and improve operational documentation.
Jobgether uses AI-powered matching to help candidates quickly get reviewed against role requirements. The company operates a globally distributed platform and emphasizes objective, fair hiring processes.
Monitor security tools and systems to analyze logs and alerts for suspicious activity, investigating potential threats and determining real incidents.
Administer SOC tools including scripting, customizations, report building, alert modifications, and automations to minimize risk and business interruptions.
Participate in disaster recovery and BCP events, documenting findings and process roadmaps for future reference and improvement.
Mercury Insurance helps people reduce risk and overcome unexpected events, with over 60 years of experience. It is a midsize company recognized as one of America's Best Midsize Employers for 2026, fostering a collaborative and inclusive culture.
Deploy and maintain endpoint detection and response agents across Windows, macOS, and Linux, coordinating updates and patches through change control.
Configure and optimize AI-assisted detection automations and prevention policies to maximize security platform coverage.
Manage vulnerability scanning schedules and asset tagging, partnering with teams to provide remediation data and configuration recommendations.
Dragos is a market leader in ICS/OT cybersecurity, defending industrial organizations that provide essential services. The company is remote-first with operations across North America, Europe, the Middle East, and APAC, and values authenticity, transparency, and trust.
Proactively identify and respond to emerging security threats and incidents.
Develop detection techniques and manage core security tooling such as SIEM and orchestration platforms.
Collaborate across teams to support security projects and participate in on-call rotations.
Circle is a leading internet financial platform company building infrastructure for digital assets, stablecoins, and blockchain. They have a flexible work environment with values of high integrity and multistakeholder collaboration.
Lead the team responsible for detecting, investigating, responding to, and learning from security events
Manage and coach a team of engineers while remaining close to technical work such as detection design, alert tuning, and incident response
Manage relationships with security operations vendors and work closely with Security, Engineering, IT, and Compliance to protect patient and provider data
Rula is a remote-first company dedicated to making mental healthcare work for everyone. We believe mental health is as important as physical health and aim to create a world where it is embraced as an integral part of well-being.