Staff Information Security Engineer - Threat Defense & Automation

About The Position

Requirements

• 12+ years in Incident Response, DFIR, Threat Hunting, or Security Operations.
• Deep expertise in incident response, threat hunting, and threat intelligence.
• Strong knowledge of MITRE ATT&CK and adversary TTPs.
• Experience with SIEM, EDR, SOAR, and cloud security.
• Scripting experience (Python, PowerShell, or Bash).
• Strong communication and leadership skills.
• US Citizen.

Nice To Haves

• Experience building threat hunting or detection programs.
• Background in threat intelligence or red/purple teaming.
• Certifications such as GCFA, GCIH, CISSP, CISM, OSCP.

Responsibilities

• Serve as a Level 3 / Staff escalation point for high-severity incidents.
• Lead investigations into APTs, ransomware, insider threats, and cloud compromises.
• Act as incident commander and coordinate response efforts.
• Participate in 24/7 on-call incident response.
• Lead threat hunting across endpoint , network , identity, and cloud .
• Operationalize threat intelligence into detections and response.
• Design and improve detections across SIEM, EDR, and SOAR.
• Automate incident triage and response workflows.
• Drive post-incident reviews and continuous improvement.
• Mentor team members and influence security strategy.

Benefits

• Competitive compensation
• Comprehensive benefits
• Career success on your terms
• Flexible work environment
• Annual wellness and community outreach days
• Always on recognition for your contributions
• Global collaboration and networking opportunities
• flexible time off
• a comprehensive well-being program with two paid Wellbeing Days and two paid Volunteer Days per year, plus a three-week Work from Anywhere option