Job Description
. Design, implement, and maintain SOC platforms, including SIEM (e.g., Microsoft Sentinel, Splunk), SOAR, and security monitoring tools
. Build and optimize log ingestion pipelines, ensuring data quality, normalization, and efficient processing
. Develop and manage detection use cases aligned with threat intelligence and MITRE ATT&CK methodologies
. Conduct threat modeling for applications, cloud environments, and infrastructure to identify risks and monitoring gaps
. Translate threat scenarios into detection logic, telemetry requirements, and automated response workflows
. Design and implement SOAR playbooks for alert triage, incident response, and escalation workflows
. Provide advanced (Tier 3) support during major incidents and contribute to root cause analysis and remediation
. Collaborate with cross-functional teams to enhance security visibility, detection coverage, and response effectiveness
Required Qualifications
. ...