Work with observability products like SIEM, SOAR, and data stream management tools.
Set up, modify, and tune alerts within the SIEM to ensure critical threats are identified properly.
Collaborate with internal stakeholders and external vendors to produce clear reports and documentation.
GuidePoint Security provides cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. The company has over 1,200 employees and serves as a trusted advisor to more than 6,200 customers, fostering a collaborative and enjoyable workplace atmosphere.
Ability to autonomously prioritize and successfully deliver across a portfolio of projects.
Learn and keep up with current cyber threats, attack methodology, active campaigns, and detection techniques using a wide variety of capabilities and sources.
Understand and utilize cyber threat intelligence sources.
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. They are a rapidly growing, profitable, privately-held value added reseller with over 1,200 employees, and an enjoyable workplace atmosphere.
Respond to DLP alerts, monitor DLP consoles and analyze security events to identify potential data loss incidents.
Conduct in-depth investigations of suspected insider threat incidents, including unauthorized access, data exfiltration, and policy violations.
Develop and implement insider threat detection use cases, alert rules, and incident response playbooks.
Universal Music Group (UMG) is the world’s leading music company, committed to artistry, innovation, and entrepreneurship. They own and operate businesses engaged in recorded music, music publishing, merchandising, and audiovisual content in over 60 countries.
Onebrief provides collaboration and AI-powered workflow software designed specifically for military staffs, making the staff faster, smarter, and more efficient. Valued at $2.15B, the company's team spans veterans from all forces and global organizations, and technologists from leading-edge software companies.
Keeps the lights on, data safe, and people moving fast.
Jumping into real incidents, guiding security decisions, and helping teams build securely from the start.
Contributing to reviews of business solutions, risk identification and secure‑by‑design practices.
Contact Energy is a power, mobile, and broadband company that is transforming how Aotearoa is powered, leading the charge on renewable energy and digitising customer journeys. They are a team of 1000+ from all walks of life. They value caring for each other, learning from one another, and being guided by their tikanga.
Supporting investigations, day‑to‑day operations, and the uplift of our security posture.
Jumping into real incidents, guiding security decisions, and helping teams build securely from the start.
Unpicking a phishing campaign and advising on a new solution or progressing vulnerability management.
Contact Energy believes home is the most important place in the world. They're a team that’s reimagining how Aotearoa is powered and how customers experience energy. Contact is guided by their tikanga and they touch lives to make life better.
Monitor security events and incidents to detect potential threats and vulnerabilities.
Support response to security incidents and manage the incident response process end-to-end.
Implement and monitor security measures to protect LTK’s infrastructure and assets.
LTK's mission is to empower the world’s premium lifestyle Creators to achieve maximum economic success by connecting brands, creators, and shoppers with a world-class shopping app and trusted tools and technology. LTK is headquartered in Dallas, TX, and currently operates on five continents and employs a diverse, multi-disciplinary team.
Responsible for running Rapid Response incidents, including coordinating with other departments, and owning the process end-to-end.
Conducts research on emerging adversary tradecraft to help scope and conduct hunt missions
Responsible for aggregating threat data to build out reports for customers to show Huntress’ value, and inform them of various threats that have been seen and reported
Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Founded in 2015 by former NSA cyber operators, we protect all businesses with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application.
24/7 monitoring and alert triage across SIEM/EDR/cloud security tooling; identify false positives vs. credible threats and set appropriate severity.
Initial investigation and enrichment: gather relevant logs/telemetry, add context, and document findings clearly in the case/ticketing system.
Escalation and coordination: escalate confirmed/suspected incidents quickly and cleanly to L2/IR with a complete handoff (timeline, scope, IOCs, actions taken).
Keyrock is a leading change-maker in the digital asset space, renowned for its partnerships and innovation. They have over 200 team members around the world with a diverse team from 42 nationalities and backgrounds ranging from DeFi natives to PhDs.
Monitor SIEM dashboard and security tools to detect security incidents.
Analyze alerts to determine relevance and prioritize response efforts.
Conduct investigations by gathering context and relevant logs.
Sentinel Blue is a young company focused on bringing enterprise-class cybersecurity to small and medium-sized businesses. They are pushing the envelope of how things are done and constantly seeking innovative ways to meet that mission in a fast-paced, dynamic environment that values learning and challenges.