- Lead design and implementation of security response automation, integrating various information and cyber defense tools using scripting languages such as Python, Bash and PowerShell to create fast, intelligent responses to common and/or critical cyber incidents
- Monitor security events and perform triage analysis to identify security incidents
- Respond to security incidents by collecting, analyzing and preserving digital evidence and ensuring that incidents are tracked in accordance with SOC requirements
- Improve our in-house incident response capabilities by building and developing new threat management practices, authoring and adapting playbooks
- Work closely with IT and R&D teams to develop and deliver security tools, configuration and policies in both IT and Cloud environments to improve information security detection reporting