What You’ll Do
Lead and deliver complex projects in Splunk, including ongoing maintenance, optimization, and advanced dashboards.
Develop and automate security processes with Python scripting and orchestration frameworks.
Design, implement, and fine-tune detection engineering rules for advanced threat visibility.
Integrate and leverage AI/ML-based technologies to improve detection accuracy, alert triage, and response.
Investigate and respond to security alerts, driving resolution and escalation when required.
Actively support and enhance incident response (IR) processes across global teams.
Conduct cloud security investigations across AWS, Azure, and other environments.
Operate and optimize EDR solutions including advanced query writing.
5+ years of experience in a SOC, MDR, or Managed EDR service OR security operations .
Proven hands-on expertise with Splunk (or equivalent SIEM tools), including project leadership.
Strong background in scripting and automation (Python required).
Practical experience in incident response and detection engineering.
Solid knowledge of cloud security investigations and monitoring.
Hands-on experience with EDR platforms
Exposure to AI/ML-based solutions for detection, monitoring, or SOC automation.
Strong analytical skills, problem-solving mindset, and ability to succeed in a fast-paced environment.
Independent, proactive, and collaborative professional with a passion for excellence.
The salary range for this position is $82,000 – $120,000/year, plus commissions or discretionary bonus, which will be based on the employee’s performance. Base pay may also vary considerably depending on job-related knowledge, skills, and experience. The compensation package includes a wide range of medical, dental, vision, financial, and other benefits.
משרות נוספות שיכולות לעניין אותך