Cyber Security Specialist (SOC / Incident Response) jobs in United States
cer-icon
Apply on Employer Site
company-logo

NorthBay - Pakistan · 3 days ago

Cyber Security Specialist (SOC / Incident Response)

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date7+ years exp

NorthBay is seeking a Cyber Security Specialist to support day-to-day cybersecurity operations for a large enterprise customer in the UAE. This operational role focuses on SIEM monitoring, incident response, vulnerability management, and maintaining compliance-aligned security operations.

ArchitectureCloud ComputingConsultingDevOpsSoftware

Responsibilities

Monitor and analyze security events using SIEM, including alert triage, correlation validation, and escalation handling
Execute incident response activities: triage, containment coordination, evidence capture, and support for root-cause analysis
Operate and manage EDR tooling: policy management, alert handling, containment actions, and endpoint investigation support
Support vulnerability management execution: scanning coordination, triage, remediation tracking, and verification
Perform basic threat hunting and proactive detection improvements based on observed patterns and recurring incidents
Maintain incident response playbooks, operational SOPs, and case documentation with high-quality reporting
Support ISO 2700, SOC 2, PCI/DSS operational compliance through evidence collection, reporting, and control execution
Coordinate with platform, network, and application teams to resolve security events within defined timelines and processes

Qualification

SIEM operationsEDR toolsIncident response lifecycleISO 27001 compliancePCI/DSS complianceSOC 2 complianceCross-functional coordinationCompTIA Security+CySA+CEHCISSPCISMPCIPQSAGIAC certificationsAWS Certified SecurityAWS Certified Solutions ArchitectMicrosoft Azure Security EngineerScripting/automation

Required

7–8 years of experience in SOC / Cyber Security Operations / Incident Response
Strong hands-on experience with SIEM operations (alerts, use-cases, dashboards, reporting)
Strong working experience with EDR tools and endpoint investigation fundamentals
Practical understanding of incident response lifecycle and operational documentation discipline
Experience coordinating remediation with cross-functional teams in hybrid/on-prem environments
Strong knowledge of ISO 27001, SOC 2, PCI/DSS operational control expectations (logging, access, incident handling, evidence)

Preferred

CompTIA Security+, CySA+, CEH
CISSP or CISM
PCIP (ISA) – PCI Professional (Internal Security Assessor)
Qualified Security Assessor (QSA) (where applicable/available)
GIAC certifications (GCIA, GCIH, GCED)
AWS Certified Security – Specialty
AWS Certified Solutions Architect – Associate
Microsoft Azure Security Engineer Associate (AZ-500)
Telecom, Government or regulated sector experience in security operations
Familiarity with structured detection frameworks (e.g., MITRE ATT&CK) and improved alert engineering
Scripting/automation exposure for reporting and operational efficiency

Company

NorthBay - Pakistan

twittertwittertwitter
company-logo
NorthBay is AWS Premier Consulting Partner and also partnered with VMware, CloudRail and SAP in support of our Customers’ AWS cloud journeys.
dateFounded in 2010
location
Andover, Massachusetts, USA
people-size201-500 employees
web-link
https://northbaysolutions.net

Funding

Current Stage
Growth Stage
Company data provided by crunchbase