Soc/Sirt Engineer

Summary

Join Datavant's highly collaborative, remote-friendly team as a SOC/SIRT engineer. You will play a vital role in defending our digital landscape by monitoring security alerts, responding to incidents, and collaborating with IT and security teams. This position requires leading complex incident response engagements, designing and implementing playbooks for threat response, and enhancing incident response processes. You will also communicate with stakeholders, mentor junior analysts, and lead SOC training programs. Datavant offers a competitive salary and a high-growth, high-autonomy culture.

Requirements

• 5+ years of experience in Security Operations, with significant experience in incident response
• Advanced knowledge and hands-on experience in incident response and cybersecurity operations
• Exceptional critical thinking, analytical skills, and attention to detail
• Excellent written and oral communication skills, with the ability to convey complex information clearly and persuasively
• Strong interpersonal and teamwork skills, with a demonstrated ability to collaborate effectively across diverse teams
• Strong understanding of Windows event logs and other investigation relevant artifacts
• Expertise in log management, SIEM, endpoint protection, and advanced security tools and technologies
• Availability for on-call duties, including nights, weekends, and holidays, to respond to high-priority incidents
• Experience working in a healthcare cybersecurity role/ company

Responsibilities

• Lead and manage complex incident response engagements, ensuring effective coordination and communication across technical teams and stakeholders
• Design, mature, and implement advanced playbooks for triage, investigation, and response to cyber threats, with a focus on continuous improvement and automation
• Spearhead initiatives to enhance our incident response processes, leveraging the latest methodologies and technologies to increase efficiency and effectiveness
• Communicate complex security incidents and recommendations to customers and stakeholders, translating technical details into actionable intelligence
• Lead, mentor, and develop junior analysts, fostering a culture of continuous learning and professional growth within the team
• Organize and direct SOC training programs, emphasizing advanced skills and readiness for incident response challenges

Preferred Qualifications

• GIAC Certified
• Experience performing Digital Forensics a plus
• Experience in a senior managed services or incident response role
• Familiarity with advanced tools and technologies, such as Splunk, Crowdstrike, Microsoft Azure, AWS, Google Workspace, etc

Benefits

• Remote work, flexible hours
• The estimated salary range for this role is $120,000 - $180,000