Job TitleSr Cybersecurity engineer-Remote Position LocationPhoenix,AZ Duration Longterm Job Duties Primary duty is responding to security events and incidents Incident Response activities will include, but are not limited to, triaging security events, network and endpoint forensic analysis, malware reverse engineering, threat hunting, vulnerability escalation, and resolving security incidents from detection to remediation Create and implement standard operating procedures and processes to help streamline investigations, daily. monitoring and analysis research Engage with partners in engineering, IT, and operations to respond to and remediate events Secondary duty will assist build out of Cyber Threat Intelligence capability Mine open data sources to identify potential cyber threats, targets of interest, and timeframes for attack Qualifications 5 years experience in working in cyber security operations (CSOC, SOC, CIRT, CSIRT) in enterprise environments Expertise with NIST and COBIT frameworks and compliance requirements for HIPAA, PCI, SOX etc. Strong knowledge of the following tool categories Network Intrusion Detection Systems (NIDS)Endpoint Detection Response (EDR) Security Information Event Management (SIEM). CASB Experience with Network Security Monitoring (NSM) methodologies Experience with Cyber Kill Chain framework and Diamond Model for intrusion analysis Experience with host-centric tools for forensic collection and analysis (SleuthKit, Volatility Framework, FTK, Encase, etc.) Network Forensics andor Network Security Monitoring (NSM) tools (Snort, Bro-IDS, PCAP, tcpdump, etc.) analysis techniques (alert, flowsession and PCAP analysis) Vulnerability scanners such as Qualys, Nessus, Metasploit, Rapid7, etc Experience with Languages such as Python, Java, Scala, PowerShell, Bash, etc. and also with SAAS, PAAS, IAAS, public and private cloud technologies such as AWS or GCP, Containerization technology such as Docker, Kubernetes CISSP certification Experience with Secureworks a plus For any futher questions please email us at