What You Will Do
- Monitor and triage security alerts from a variety of sources including SIEM (SecOps, Sentinel), EDR (SentinelOne, CrowdStrike) and cloud security platforms like Wiz, Orca.
- Serve as a primary responder for security incidents, executing the incident response lifecycle from initial detection and containment to eradication and recovery.
- Support development of threat detection library, including incorporating threat intelligence, tuning within security tools, and SOAR response actions.
- Maintain and draft SOP’s and supporting documents for the Incident Response Plan and strategy
- Analyze phishing attempts, malware, and other cyber threats; partner with Security Engineering to devise additional security controls, administer email security, EDR, ZTNA, and other security tooling configurations to block emerging threats.
- Participate in a 24/7 on-call rotation to respond to critical security incidents.
- Support triage and response for compliance alerts and requests, enabling the continuous compliance program at BlackCloak using tools such as Vanta, Drata.
- Prepare and present detailed incident reports and security metrics to technical and leadership audiences.
What You Need To Be Successful
- 4-6 years of direct experience in a Security Operations Center, incident response, threat intelligence, or similar cybersecurity role.
- Ability to navigate complex problems, stay cool under pressure, and be highly inquisitive.
- Hands-on experience with SIEM, SOAR, and other security platforms for log analysis, correlation, automated response, and maturation of detections/runbooks.
- Deep understanding and practical experience with Endpoint Detection and Response (EDR) tools and their investigative capabilities.
- Good knowledge of cloud security principles and services in AWS, Azure, or GCP, including experience with security tools like Wiz or Prisma Cloud.
- Solid understanding of network protocols, operating systems (Windows, Linux, macOS), and common attack vectors (OWASP, MITRE)
- Familiarity with identity and access management concepts, including SAML, OAuth, and role-based access control (RBAC)
- Relevant industry certifications are highly desirable, such as GIAC (GCIH, GCFA), CISSP, or CompTIA Security+.
- Excellent problem-solving skills and the ability to communicate complex technical concepts to both technical and non-technical audiences.
Similar Jobs
.png)
What We Do
BlackCloak protects corporate executives and high-profile individuals from cybersecurity, privacy, financial, and other reputational risks. Used by Fortune 500 companies across all industries, the BlackCloak Concierge Cybersecurity & Privacy™ Platform is a holistic solution including mobile and desktop apps as well as concierge support. Executives and high-profile individuals get peace of mind knowing their family, reputation, and finances are secured. Companies rest assured that their brand, intellectual property, data, and finances are protected against threats coming through executives without having to invade their personal lives. BlackCloak stands out in the cybersecurity industry by focusing on the often-overlooked intersection of personal and corporate digital protection. Unlike traditional firms that solely prioritize corporate defenses, BlackCloak understands that the vulnerabilities of high-level executives and their families can pose significant risks to the entire company. By offering comprehensive and tailored solutions that shield both personal and professional digital environments, BlackCloak ensures a holistic approach to security. This unique emphasis on protecting every facet of an executive's digital life—from corporate email systems to personal devices and home networks—sets BlackCloak apart as a pioneer in safeguarding the modern business world.
Why Work With Us
Here, you're not just an employee; you're a guardian of digital trust, protecting both corporate assets and personal identities. You'll join a dynamic team of innovators who are passionate about staying ahead of cyber threats and delivering tailored solutions to our unique client base.
Gallery
