Senior SOC Analyst – Incident Response

This is a fully remote position, open to applicants in Poland.

📋 Description

• Act as a primary escalation point (level 2 analyst) for incident response resources on call.

• Conduct detailed investigations as part of Edwards' proactive security monitoring and threat hunting operations while adhering to SLAs.

• Lead the development and implementation of response and remediation strategies to safeguard against security threats in Edwards' environments and products.

• Oversee data ingestion processes, including identifying gaps, onboarding data sources, and tuning and correlating them.

• Spearhead the design, testing, and deployment of detection use cases into production.

• Contribute to the advancement of the threat hunting program.

• Manage the operations and maintenance of essential cybersecurity capabilities and services within the Detection Response domain, including SIEM (Google SecOps, Splunk, Qradar, etc.) and Log Collectors (WEF, Cribl, NXLog, etc.).

• Create automation workflows to enhance detection and response initiatives.

• Participate in CIRT team efforts as required.

• Provide guidance, mentoring, and knowledge sharing to fellow team members.

• Document and maintain technical playbooks for incident response and timelines of incidents.

• Stay updated on the changing cybersecurity threat landscape to foster innovative detections, threat hunts, and automations to bolster Edwards' security posture.

⛳️ Requirements

• Bachelor's Degree in a relevant field.

• Minimum of 4 years of experience in Information Security SOC, CIRT, or SIEM teams.

🏝️ Benefits

• Competitive salaries.

• Performance-based incentives.

• A wide variety of benefits programs tailored to meet individual needs.