Threat Detection and Response Engineer

Remote, USA Full-time

## RoleApply comprehensive knowledge and a thorough understanding of Incident Response concepts, principles, and technical capabilitiesCollaborate across Information Security and business partners to ensure effective, precise, and rapid responseAct as the point of escalation from within the Incident Response team to drive all cyber incidentsIdentify new detection opportunities, create playbooks, and support new technology implementations to defend against evolving threatsMaintain awareness and understanding of the current threat landscape.Analyze threat intelligence with the aim to mitigate potential risksReport the overall health of the SOC via metrics, OKRs, and risk indicators to leadershipProvide Incident Response (IR) support when analysis suspects security incidents to help contain and eradicate threats;Perform incident triage, incident response, and forensic investigations across endpoints and cloud environmentsConduct technical examinations of computer-based evidence including logs, packet captures, SIEM & IDS events, disk forensics, malware analysis, and moreDocument incidents from initial detection through final resolution, and present the findingsInvestigate, document, and report on cyber security issuesCreate and continuously improve standard processes, operating procedures, and incident response playbooks## YouCurious about who thrives at Whatnot?We’ve found that low ego, a growth mindset, and leaning into action and high impact goes a long way here. As our next Threat Detection and Response Engineer, you should have a minimum of 5+ years of relevant experience in security, preferably in a large enterprise environment, plus:Bachelor’s degree in Computer Science, Information Security, a related field, or equivalent work experience. 5+ years’ experience in cyber incident response, or a similar cyber field, including experience with security principles, and defense-in-depth techniquesExperience and understanding of security concepts, SOAR(Tines), EDR, NDR and SIEM (Chronicle) technologiesExperience with multiple Cloud Service Providers (AWS, GCP)Excellent written communication skills with the ability to document, communicate, and report security incidents, as well as the status of the implementation and effectiveness of cybersecurity controls with product and business leadersExpected to perform on-call duties Apply tot his job

Apply Now

Threat Detection and Response Engineer

Similar Jobs

Senior Threat Detection Engineer

Cybersecurity Threat Detection Engineer

Senior Threat Detection Engineer

Director, Internal Threat Intelligence and Detection Engineering (Remote, Eastern & Central)

Remote - BPS BFS SD TESTING TM

System Architect, QA and Automation

Test Architect / QA Architect

QE Coach / Architect Automation testing (With Backend Development background)-5

Sr. Software Architect II, Test Automation (Mobile/Cloud)

Commissioning Technician, Manufacturing Automation Development Engineering

Senior Analyst Strategy & Workforce Analytics - Remote Opportunity!

Healthcare Partnerships Liaison for Startup Company

Patient Service Representative (Hybrid or TX Based Remote Opportunities)

OH - Copado Administrator /Salesforce Administrator 786633 (Remote)

Functional / Integrative MD for AI-Driven Medical Platform + Remote Physician Support

SharePoint Online Administrator

UM Nurse, RN (Weekend Shift)

Hiring Now: Principal Biostatistician

Compliance Analyst, Finance & Banking

Principal Structural Engineer job at Gannett Fleming in Los Angeles, CA