Publicada el Publicado hace 9 hr horas
Misión del puesto
Experteer Overview In this role, you will bolster Edwards’ cybersecurity posture by leading incident response and threat hunting across our networks, applications, and products. You will work within a 24x7 Incident Detection and Response team to design detections, perform complex investigations, and onboard log sources. The role combines hands-on SIEM operations with proactive threat discovery to protect patient-focused systems. This is a remote, Europe-based position tied to our Poland/Spain/Czech Republic entities with a clear impact on general security.Compensaciones / Beneficios
- Serve as escalation tier for on-call incident response resources
- Conduct complex investigations within SLAs as part of active monitoring
- Design and implement detection use cases into production
- Lead data ingestion efforts: identify gaps, onboard sources, tune, correlate
- Drive threat hunting program and automate detection/response workflows
- Maintain cyber security capabilities in Detection and Response (SIEM, log collectors)
- Participate in CIRT efforts as needed
- Mentor team members and document incident response playbooks and timelines
- Stay updated on threat landscape to drive detections and automationsResponsabilidades
- Bachelor's Degree in related field
- At least 4 years in Information Security SOC, CIRT or SIEM teams
- Strong incident handling and escalation experience
- Experience with Google SecOps or other SIEM solutions (Splunk, Qradar)
- Experience with log collectors management (WEF, Cribl, NXLog)
- SOAR platforms operations experience (Torq, Palo Alto XSOAR)
- Threat hunting experience and/or design
- IR concepts, data tuning, SIEM, forensics, cloud monitoring
- Knowledge of MITRE ATT&CK and common attack vectors
- Strong analytical, communication, and collaboration skillsRequisitos principales
- competitive salaries
- performance-based incentives
- comprehensive benefits programs
