Full-Time Senior SOC Incident Responder

About you: You are someone who wants to influence your own development. You’re looking for a company where you have the opportunity to pursue your interests and be able to grow professionally. You bring to Applaudo the following competencies:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related discipline, or equivalent professional experience.
• 2–3 years of hands-on experience in SOC operations or incident response roles.
• Expertise in investigating and mitigating security incidents across diverse environments, including on-premises, cloud, and hybrid infrastructures.
• Proficiency with SOC technologies, including SIEM (e.g., Chronicle, Splunk, IBM QRadar), EDR/XDR (e.g., Trellix, CrowdStrike, SentinelOne), and SOAR platforms (e.g., Chronicle, FortiSOAR, Splunk SOAR).
• Strong understanding of threat intelligence integration, adversary TTPs, and the MITRE ATT&CK framework.
• Desired Certifications: CompTIA Cybersecurity Analyst (CySA+), EC-Council Certified Incident Handler (ECIH), GIAC Certified Incident Handler (GCIH), and SIEM/EDR certifications (e.g., Splunk, Chronicle, SentinelOne) are a plus.
• Advanced English

You will be accountable for the following responsibilities:

• Lead the analysis of escalated incidents, assess attack scope, identify affected systems, and develop containment, eradication, and recovery plans.
• Leverage threat intelligence feeds and IoC databases to enhance incident response and analyze adversary tactics to improve detection and prevention.
• Act as the escalation point for complex incidents, collaborating with internal teams and interfacing with external stakeholders for effective resolution.
• Use and maintain expertise in SIEM, EDR/XDR, and SOAR platforms for advanced threat detection, while optimizing tools and tuning detection rules.
• Document the entire incident lifecycle, including root cause analysis and actions taken, and produce detailed reports with recommendations for security improvements.
• Take ownership of complex incidents, ensuring timely resolution and effective communication with stakeholders.
• Work closely with IT, security, and SOC engineering teams to ensure coordinated and efficient responses to incidents.
• Review and refine response processes and detection mechanisms, contributing to continuous improvement and strengthening the organization’s security posture.

What is the last date for applying to the job?

Which countries are accepted for this remote job?