Outstanding opportunity to join a great organization that is seeking to add a key member to their Security team. This is a 4 day a week on-site role with 1 day a week, working remotely.
The location is the Beltway/290 area of Houston, and this is working for a global company with lots of career growth opportunities. I am seeking LOCAL HOUSTON CANDIDATES ONLY PLEASE.
- Lead and coordinate incident response efforts, investigating and resolving security incident.
- Develop and refine SIEM correlation rules and alerts.
- Utilize PowerShell and Python scripting to automate repetitive tasks, streamline processes, and enhance efficiency within the SOC.
- Leverage regex patterns to parse and analyze log data for threat detection and correlation.
- Conduct proactive threat hunting activities.
- Collaborate with cross-functional teams in implementing security best practices and enhancing the overall security posture.
- Up to date on the latest cybersecurity trends, threats, and vulnerabilities.
Skills and Experience:
Essential:
- 5 or more years' experience in a SOC environment, focusing on incident response and threat detection.
- Proficiency in SIEM platforms and experience tuning and optimizing SIEM rules and queries.
- Strong scripting skills in PowerShell and Python.
- In-depth knowledge of regex for log parsing and pattern matching.
- Experience with threat hunting methodologies and tools.
- Excellent analytical and critical thinking skills.
- Effective communication skills in mentoring, teaching, and explaining technical concepts to all stakeholders.
- Experience with cloud IR, logging, and detection.
Desirable:
- Prefer a 4 Year / bachelor’s degree in relevant field (CS, Cybersecurity, etc.)
- Certifications: Sec+, GIAC, or equivalent are a huge plus