πBrazil
SecOps & Incident Response Engineer
Torq
πRemote - Israel
Please let Torq know you found this job on JobsCollider. Thanks! π
Summary
Join Torq, a rapidly growing cybersecurity company, as a Security Operations & Incident Response Engineer. You will collaborate with the CISO and peers to shape and execute the company's security strategy, develop and maintain security playbooks and response frameworks, and manage the full lifecycle of security alerts using Torq's Case Management platform. This role requires expertise in SIEM platforms (preferably Splunk), automation platforms (SOAR, Hyperautomation), and cloud platforms (AWS, GCP, Azure). You will partner with IT and Engineering teams, promoting security awareness and best practices. The ideal candidate possesses strong communication skills and thrives in a fast-paced startup environment. Torq offers a unique and exciting work environment.
Requirements
- Experience working in remote-first and SaaS-based organizations is a must
- 4+ years of experience in Cybersecurity, specifically in Incident Response and SOC environments
- Hands-on experience working with 24/7 security operations teams
- Experience working with automation platforms (SOAR, Hyperautomation) and/or scripting in Python/Bash
- Deep understanding and hands-on experience with SIEM platforms (preferably Splunk), including rule creation and tuning
- Strong grasp of cloud adversary techniques, attack vectors, and frameworks such as MITRE ATT&CK and Cyber Kill Chain
- Strong communication skills and ability to work independently in a fast-paced startup environment
Responsibilities
- Collaborate with the CISO and peers to shape and execute the companyβs security strategy
- Develop, maintain, and continuously improve security playbooks, processes, and response frameworks
- Manage the full lifecycle of security alerts β from triage and investigation to response and escalation β using Torqβs Case Management platform
- Perform access and configuration reviews across cloud, SaaS, and endpoint environments, and lead remediation efforts where needed
- Develop and fine-tune detection rules in Splunk (or similar SIEM platforms) to increase detection quality and reduce false positives
- Utilizing Torq to build and manage automated workflows to accelerate incident response and reduce MTTR
- Evaluate new security technologies and lead proof-of-concepts to improve existing controls
- Partner with IT and Engineering to strengthen SaaS security practices
- Act as a trusted advisor across teams, promoting security awareness and best practices
- Communicate clearly in both Hebrew and English, providing documentation and updates to relevant stakeholders
Preferred Qualifications
Experience working with cloud platforms (AWS, GCP, Azure) and SaaS security tooling is a plus
Share this job:
Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.
Similar Remote Jobs
π°$200k-$228k
πWorldwide
πWorldwide
πRomania
πGermany
πFrance, Spain
πAustralia
πSpain, France
π°$140k-$175k
πUnited States