Principal Security Engineer (Incident Response)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Principal Security Engineer (Incident Response): Providing strategic and tactical leadership for enterprise incident response across complex hybrid environments with an accent on senior incident command and technical authority for high-severity security events. Focus on engineering cloud-native detections in AWS, owning the readiness lifecycle, and driving measurable improvements to response effectiveness.
Location: Raleigh, NC
Salary: $104,900 - $174,700
Company
is a leading provider of legal news and information services.
What you will do
- Serve as the senior incident commander and technical lead for high-severity security events across hybrid and multi-cloud environments.
- Coordinate triage, containment, eradication, and recovery efforts across multiple technical teams.
- Own and mature the incident response program, including playbooks, escalation paths, and crisis communications.
- Plan and execute readiness activities such as tabletop exercises and cyber range events.
- Design and improve detection engineering and monitoring capabilities specifically within AWS.
- Facilitate post-incident reviews, root cause analysis, and track corrective action plans to completion.
Requirements
- 10+ years of IT security experience with significant incident response leadership in enterprise environments.
- Must be based in Raleigh, NC.
- BS in Engineering, Computer Science, or equivalent professional experience.
- Advanced knowledge of hybrid enterprise architectures and common adversary attack paths.
- Hands-on experience engineering detections and telemetry in AWS (CloudTrail, GuardDuty, VPC Flow Logs).
- Ability to provide clear, decision-oriented updates to senior and executive leadership.
Nice to have
- Forensics-focused certifications such as GCIH or GCFA.
- Cloud security certifications for AWS, Azure, or GCP.
- Proficiency in scripting for investigation and response workflows using Python or PowerShell.
- Familiarity with automation and SOAR concepts.
Culture & Benefits
- Eligible for an annual incentive bonus.
- Access to country-specific health and well-being benefits.
- Commitment to a fair and accessible hiring process with accommodation support.
- Equal opportunity employment environment.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
SOC Engineer (Cybersecurity)
Principal Cloud Security Architect (Cloud Security)
Security Detection Engineer (Cybersecurity)
Security Engineer (Cloud Security)
Principal Consultant - SIEM (Cybersecurity)