Back to jobs
Job Description
- Analyze real-time security events across end-point, network, and cloud environments using a centralized analyst console and SIEM/Google SecOps platform.
- Conduct host and network forensic analysis to support incident response efforts, understanding attacker activity, and assessing customer impact.
- Execute basic static and dynamic analysis of suspicious files to determine capabilities (e.g., identifying GOOTLOADER JavaScript or CORNFLAKE.V3 backdoors).
- Determine the severity, impact, and scope of security incidents and compromises.
- Isolate compromised hosts and stop lateral movement or ransomware propagation.