Lead the investigation, analysis, and remediation of high-severity security incidents.
Perform advanced threat hunting and anomaly detection across networks and endpoints.
Manage and fine-tune security tools including SIEM, EDR, IDS/IPS, firewalls, and endpoint security solutions.
Conduct forensic analysis and digital evidence collection in case of security breaches.
Collaborate with IT teams to implement security controls and patch vulnerabilities.
Develop and maintain incident response playbooks and runbooks.
Provide mentorship and technical guidance to junior security analysts (L1/L2).
Work with compliance teams to ensure adherence to security policies and regulatory requirements.
Participate in security architecture reviews and recommend improvements.
Stay updated on emerging threats, vulnerabilities, and security technologies.

Education:
Bachelor's degree in Computer Science, Information Security, or related field.
Experience:
5+ years in cybersecurity with hands-on experience in incident response, threat hunting, and security operations.
Technical Skills:
Expertise in SIEM tools (e.g., Splunk, QRadar, ArcSight)
Strong knowledge of endpoint detection and response (EDR) tools
Proficient in network security monitoring and analysis
Experience with malware analysis, reverse engineering, and digital forensics
Familiarity with scripting languages (Python, PowerShell, Bash)
Understanding of cloud security principles (AWS, Azure, GCP)
Certifications (Preferred):
CISSP, CISM, CEH, GCIA, GCIH, or equivalent

Security L3 Engineer