The Threat Response Engineering team has extensive experience conducting investigations on endpoints, servers, and emerging threat surfaces such as identity, email, SaaS, and cloud. The team utilizes a range of techniques such as analyzing telemetry data from security platforms, malware analysis, and threat hunting. Active Remediation takes advantage of the myriad of tools available in the Red Canary platform to perform immediate actions when threats are detected. As Threat Response Engineers, one of our goals is to identify opportunities to increase our efficiency and ensure we minimize the amount of time customer environments remain vulnerable. We do this by finding new and creative ways to use existing tooling to benefit our customers while also helping build and develop new tools to add into our arsenal.

What You’ll Do

    • Use Red Canary’s detection platform, detected threat information, and our customers’ security products to analyze, contain, and remediate threats in the customers’ environments
    • Provide customers with verbose reports of the actions taken to ensure they understand what you did to clean up their environment and protect them from further damage
    • Identify effective response strategies to further enhance the security posture of Red Canary customers
    • Actively engage and collaborate with the Detection Engineering, Threat Hunting, and Engineering teams to develop new ways of performing timely remediation of identified threats
    • Engage with customers during the setup of Active Remediation and response activity

What You’ll Bring

    • Experience with Endpoint Detection and Response (EDR) products including CarbonBlack, CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, and Palo Alto Cortex
    • Experience with or the capacity to learn how to analyze telemetry from and within various email, identity, and cloud computing technologies including, but not limited to, AWS, Azure, Google Cloud Protection and Okta, Microsoft Entra ID
    • Understanding the fundamentals of internal system functionality of Windows, MacOS and Linux operating systems
    • Understanding of enterprise technology, network controls, cloud environments, and security operations
    • Understanding of security principles as it relates to email, identity, and cloud computing environments
    • Understanding of network communication
    • Experience responding to security events/threats
    • Strong analytical and problem-solving skills
    • Ability to work in a fast-paced, operational environment and successfully prioritize important tasks
    • Professional and articulate with excellent written and verbal communication skills
    • Deep interest in understanding and staying current with the latest adversary tactics and techniques
Targeted base salary: $100,200 – 120,000 + bonus eligibility and equity depending on experience.
Benefit Highlights:
– 100% Paid Premiums- Red Canary pays 100% of your medical, dental and vision premiums for you and your dependents. No waiting period.
– Fertility Benefits- All new hires are eligible for benefits as of their first day.
– Flexible Time Off- Take the vacation and sick time you need.
– Health Reimbursement Account- Fully funded by Red Canary to offset out of pocket expenses such as deductibles, coinsurance and copays.
– Flexible Work Environment- With 60% remote workforce, Canaries can work from virtually almost anywhere.
– Paid Parental Leave- Full base pay to bond/care for your new child.
The application deadline is May 31st, 2024.
Job Overview
Job alerts

Subscribe to our weekly job alerts below and never miss the latest jobs

Sign in

Sign Up

Forgotten Password

Job Quick Search

Cart

Basket

Share