Backend разработчик
генерация резюме под вакансию
сопроводительное письмо
описание
Relativity provides a platform for legal and compliance professionals to manage, analyze, and organize data for investigations and litigation.
задачи
- Review, validate, and triage alerts and perform technical analysis of log data from various sensors, signature logic, and threat intelligence sources;
- Assess the impact of security events using host, cloud, and network-based indicators to deliver actionable incident escalations;
- Develop and deploy detection and prevention signatures as part of a layered defensive strategy;
- Build automation to search through telemetry to detect and isolate advanced threats;
- Create Standard Operating Procedures, SOC playbooks, configuration guides, and secure standards;
- Automate incident handling processes;
- Engage in continuous research of emerging threats and apply countermeasures;
- Serve as a subject matter expert in the analysis of malicious activity;
- Communicate investigation findings to technical and executive stakeholders;
- Identify and automate technical burdens;
- Build automation to deploy, operate, and connect cyber security tools and applications.
требования
- 5+ Years of experience in a Security Operations Center, Incident Response, or Threat Detection team;
- Strong cyber incident response skills including network forensics, memory forensics, and packet analysis;
- Ability to read, write, and analyze PowerShell, C#, and Python;
- Capability to independently manage the prioritization of complex security events;
- Advanced understanding of SOC/CIRT operational processes and documentation;
- Advanced knowledge of TCP/IP, network services, cryptography, cloud, and web application attacks;
- Ability to collaborate within a global cross-functional team to execute high-level objectives;
- Deep understanding of infection mechanisms, malicious behavior, exploitation techniques, and mitigating controls;
- Good understanding of attacker tools, tactics, and procedures;
- Strong analytical and problem-solving skills;
- Nice to have: 7+ years of experience, exposure to threat detection development and tuning, software design and development experience, DevSecOps experience, threat hunting, threat emulation, purple teaming, familiarity with industry standard security devices, reverse engineering malicious code, experience with threat intelligence tools, certifications (GCFA, GCIA, GCIH, GNFA, GREM, OSCP, OSEP, OSED, OSWE, OSDA, OSCE3, CompTIA Security+, CCNA CyberOps, or CEH).
условия
- Comprehensive health, dental, and vision plans;
- Parental leave for primary and secondary caregivers;
- Flexible work arrangements;
- Two, week-long company breaks per year;
- Additional time off;
- Long-term incentive program;
- Training investment program;
- Competitive base salary and annual performance bonus.
навыки
Если просят войти через iCloud, отправить коды из SMS, запустить код, что-то установить, перевести деньги или сделать что угодно, связанное с деньгами, не соглашайтесь: это признаки мошенничества.