FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Tech Stack
Tools & technologiesAWSCloudKubernetesPythonSplunk
About the role
Key responsibilities & impact- Serve as the primary point of contact and coordinator for the most complex incidents across the cloud, corporate systems, endpoints, identities, and the data center.
- Conduct end-to-end investigations: root cause analysis, forensics, timeline reconstruction, and remediation recommendations to prevent recurrence.
- Serve as the team’s go-to expert in incident management, ensuring a rigorous and consistent approach to handling, escalating, and documenting incidents.
- Lead proactive threat hunting by leveraging CTI and OSINT to identify and neutralize risks before they impact Ledger.
- Design and optimize the SIEM (Splunk) architecture and SOAR (Torq) workflows that underpin effective detection, triage, and response.
- Build, evolve, and own the architecture of our internal Agentic SOC and our log/data pipeline, and lead the automation of reporting for the SecOps team.
- Mentor and foster the technical growth of senior and junior engineers, and act as a force multiplier within SecOps.
- Work with the Engineering, Infrastructure, IT, and Cloud teams to align operational security with the organization’s objectives.
Requirements
What you’ll need- 9+ years of experience in security operations, incident response, and CSIRT.
- A strong track record as a technical expert in incident management, threat hunting, and detection engineering.
- Comfortable working both as an individual contributor and as a team player in a fast-paced cloud and SaaS environment.
- In-depth expertise in SIEM (ideally Splunk) and SOAR platforms, as well as CTI/OSINT methodologies.
- Solid knowledge of AWS security (IAM, audit logs, network configurations, workloads, containers, Kubernetes) and cloud security tools (ideally Wiz, CSPM/CNAPP); experience with an EDR (ideally CrowdStrike).
- Strong incident response and forensics skills, with the ability to conduct complex end-to-end investigations.
- The ability to automate tasks and reporting using Python, Bash, APIs, GitHub Actions, a SOAR platform, or equivalent.
- A solid understanding of infrastructure (cloud, networking, containers, CI/CD) and the ability to build and scale: log/data pipelines, integrations, and internal services.
- A strong interest—or experience—in AI applied to security operations, agent-based workflows, and SOC automation.
Benefits
Comp & perks- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Incident ResponseForensicsRoot Cause AnalysisThreat Intelligence (CTI)Open Source Intelligence (OSINT)Security AutomationLog/Data Pipeline DevelopmentCloud Security Tools (Wiz, CSPM/CNAPP)EDR Experience (CrowdStrike)Kubernetes Security
Soft Skills
Team CollaborationMentoringProblem SolvingCommunication
