Назад
Company hidden
14 часов назад

Operations Advisor (Cybersecurity)

Формат работы
remote (только USA)/hybrid
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Operations Advisor (Cybersecurity): Driving detection quality and security maturity for clients by owning technical detection outcomes and engineering with an accent on SIEM optimization and coverage gap remediation. Focus on executing retrohunt activities, mapping detections to adversary TTPs, and translating technical findings into risk-based business insights.

Location: Remote/Hybrid (Must be based in the United States)

Company

hirify.global provides managed detection and response (MDR) and identity & access management solutions powered by their proprietary entity fabric, Meridian.

What you will do

  • Own and maintain detection coverage aligned to the hirify.global Rule Set.
  • Lead the tuning and optimization of detection rules across multiple SIEM platforms.
  • Identify, prioritize, and remediate detection gaps through hands-on engineering.
  • Execute retrohunt activities to validate the effectiveness of detections.
  • Manage technical account relationships and lead cadence calls regarding detection performance and outcomes.
  • Support and lead response efforts for security incidents, providing detection-focused expertise.

Requirements

  • 3–5 years of experience in detection engineering, security operations, or a related discipline.
  • Hands-on proficiency with enterprise SIEM platforms such as Splunk, Microsoft Sentinel, or Chronicle.
  • Proven experience writing and tuning detection rules in production environments.
  • Working knowledge of MITRE ATT&CK for mapping detections to adversary TTPs.
  • 3+ years of experience with threat hunting methodologies and retrohunt execution.
  • Must be based in the United States.

Nice to have

  • Relevant certifications: GCIA, GCIH, GCDA, or SIEM vendor-specific certifications.
  • Familiarity with SOAR platforms and automation-assisted detection workflows.

Culture & Benefits

  • Comprehensive medical and life insurance covering employees and dependents.
  • Retirement match program to support long-term financial goals.
  • Flexible hybrid work model (2–3 days in office).
  • Paid time off, including sick and casual leave, plus bereavement and volunteer time.
  • Professional development reimbursement and access to the LinkedIn L&D platform.
  • Mobile phone reimbursement.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →