Engenharia de Segurança III (Pleno) - Operações do SOC

2 weeks, 6 days ago
Full-time
Mid Level
Cybersecurity
Harford County Public Library

Harford County Public Library

Access, Information, Service, Anytime, Anywhere

Diversified Consumer Services
51-250
Founded 1945

Description

  • Monitor and triage security alerts, and respond to incidents or crisis situations in corporate and production environments.
  • Improve detection engineering processes by refining correlation rules, analyzing logs, and maintaining monitoring effectiveness across SOC tools.
  • Conduct proactive threat hunting to identify threats and anomalies in the environment.
  • Support the collection and structuring of missing logs or data needed for investigations.
  • Participate in troubleshooting and resolving issues involving security tools and environment integrity.
  • Assist product, development, and infrastructure teams with technical analysis, validation, and remediation of vulnerabilities identified by the SOC.
  • Identify opportunities to automate incident response playbooks and SecOps routines to improve operational efficiency.
  • Operate and evolve security technologies such as SIEM, EDR/XDR, WAF, NIDS/IPS, and Proxy solutions.

Requirements

  • Experience in SOC, defensive security engineering, or incident response teams.
  • Hands-on experience analyzing security logs and using monitoring tools, with understanding of common attack vectors.
  • Familiarity with SOC security technologies such as SIEM, EDR/XDR, WAF, IPS/IDS, or Proxy.
  • Practical knowledge of cloud security concepts and services in AWS, Azure, or GCP.
  • Strong understanding of computer networks and connectivity, including TCP/IP, VPNs, network topologies, and traffic analysis.
  • Knowledge of security frameworks and best practices such as MITRE ATT&CK, NIST, or SANS CIS Controls.
  • Intermediate English for reading technical documentation and supporting international tools.
  • Completed or in-progress degree in Information Security, Computer Science, Engineering, or related fields.
  • Scripting skills for SOC automation, such as Python or Bash, are a plus.
  • Previous experience in financial services or familiarity with PCI-DSS is a plus.
  • Security certifications such as Security+, CySA+, CEH, or vendor certifications from Elastic, Palo Alto, Microsoft, Fortinet, AWS, or CrowdStrike are a plus.

Benefits

  • Health and dental insurance.
  • 24/7 virtual hospital access.
  • Meal and/or food allowance.
  • Remote work allowance for remote positions.
  • Flexible working hours.
  • Education benefit with access to books, podcasts, training, video lessons, and internal learning platforms.
  • Gym and wellness benefits through Wellhub and TotalPass.
  • Childcare assistance.
  • Profit sharing bonus (PLR).
  • Life insurance.
  • Transportation voucher for on-site positions.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Cyber Security Analyst I

CyberSheath 51-250 Internet Software & Services

CyberSheath Services International LLC is hiring a Cyber Security Analyst I to support its remote Security Operations team in monitoring client environments for the defense industrial base and responding to security threats.

Cybersecurity SIEM SOC
13 hours, 49 minutes ago

Senior GRC Analyst

Morgan & Morgan 1K-5K Specialized Consumer Services

Morgan & Morgan is hiring a Senior GRC Analyst to help build and run its Risk & Resilience program within Information Security, with end-to-end ownership of governance, risk, compliance, and awareness work across a national law firm.

13 hours, 49 minutes ago

Active Directory / Identity Engineer

Keywords Studios 10K-50K Internet Software & Services

Keywords Group is seeking an experienced Active Directory SME and Azure Identity Lead to guide company-wide identity architecture and support global IT across on-premises and cloud environments.

Active Directory Cybersecurity DHCP DNS PowerShell
14 hours, 4 minutes ago

Information Security Manager

HICX.com 51-250 Professional Services

HICX is hiring an Information Security Manager to lead its internal IT and security function, overseeing governance, compliance, incident response, privacy, and employee IT operations for a remote global SaaS business.

AWS Azure SIEM
14 hours, 4 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers