Detect, analyze, and respond to security events and incidents across cyber, DLP, fraud, and privacy functions. Operate advanced monitoring and investigation tools. Perform malware analysis and study attacker tactics, techniques, and procedures. Improve detection rules and reduce false positives through purple team engagements. Document incidents, provide reports, and collaborate across teams.
This role is accountable for defining and streamlining processes, workflows, and playbooks that enable effective day-to-day operations. As Huntress continues to grow, they are laser-focused on scaling operations and force-multiplying analysts. The Security Operations Manager will work with peer regional managers to ensure consistent global operations while providing the analyst team with training opportunities and career growth.
Cybersecurity Analysts focused on Digital Forensics and Incident Response (DFIR) deliver incident investigation and response services to At-Bay insureds. Responsibilities include analysis of digital evidence to identify indicators of compromise and adversary activity, development of incident timelines and theories of compromise, identification of incident root causes, and participation in threat actor negotiations as necessary.
Detect and respond to cyber incidents facing customersβ internal business. Analyze threat alerts that fire from Cortex XDR. Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire Palo Alto Networksβ customer base. Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats. This position is a Shift Position.
The Red Canary Cyber Incident Response Team (CIRT) continues to push the boundaries of threat detection and response with a unique combination of operations, threat research, and engineering. Candidates will use Red Canaryβs detection platform to analyze EDR telemetry, alerts, and log sources across several detection domains, publish threats for customers using concisely-written communication, and improve the CIRT workflow through orchestration & automation.
As an Incident Response Consultant, you will be a technical resource that leverages your knowledge, skills, and experience to help deliver results to clients in various sectors. Your primary responsibilities revolve around solving challenging and complex problems and include sharing knowledge with team members, assisting with the technical aspects of DFIR investigations, and utilizing your creativity and adaptability to perform advanced mission-critical assessments.