Incident Response Consultant - Remote

Overview

We are seeking an Incident Response Consultant to join our team at NRB within the Trasys International department. This role offers 90% remote work flexibility, allowing you to collaborate with a global team from the comfort of your own space.

In Short

• Development of managed Threat informed Detection content.
• Designing and deploying managed detection rules.
• Contributing to Threat Detection coverage on Azure IaaS&PaaS.
• Identifying and documenting data sources from client’s networks.
• Preparing centralized log collections.
• Performing proactive operations to identify potentially malicious activity.
• Assisting in reporting on Detection Engineering capabilities.
• Interacting and coordinating changes with Incident Response sectors.

Requirements

• Very good knowledge and experience in Azure Cloud Security.
• Expertise in Microsoft Azure Sentinel and Defender suite.
• Good knowledge of Splunk and Splunk Enterprise Security.
• Experience in security monitoring and detection on O365.
• Certifications in Azure or AWS security are strong assets.
• Experience in Detection Engineering.
• Experience with DevSecOps principles and Git platforms.
• Strong analysis and problem-solving skills.
• Very good communication skills.
• Capability to write clear technical documents.

Benefits

• Flexible remote work environment.
• Collaboration with a global team.
• Opportunity to work on cutting-edge technology.
• Professional development opportunities.
• Supportive team culture.