Trustwave · 1 day ago

Cyber Threat Engineer - Global Threat Operations

United States

Full-time

Remote

Mid Level

Maximize your interview chances

Cloud SecurityCyber Security

Comp. & Benefits

No H1B

Insider Connection @Trustwave

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Analyze escalated, complex cases involving a pattern of security events from endpoint detection and response technologies.

Resolve intractable technical problems within managed security solutions as part of a sustained improvement project.

Create, improve, and document processes for the management and monitoring of security solutions.

Tune devices for blocking and reporting based on customer business need.

Baseline threat detection devices for complex and potentially breached customer environments.

Test and improve endpoint detection, protection, and response policies.

Take responsibility for customer satisfaction and overall success of managed services.

Timely respond to questions and concerns of the DFIR and client security teams concerning incident investigation and response.

Adhere to policies, procedures, and security best practices.

Resolve problems independently and understand appropriate documentation and escalation procedures.

Perform rotating on-call duties (nights/weekend rotations).

Act as a mentor and escalation point for analysts within the Threat Detection and Response team.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cyber investigationEndpoint DetectionResponseThreat HuntingUnix/Linux administrationWindows administrationLog collection toolsPalo Alto Cortex XDRIncident handlingTeam orientationHighly motivatedSecurity certificationsIncident Handling Certifications