Job description

The job involves leading incident response, threat hunting, and forensic investigations with a focus on cloud environments and Kubernetes security. The candidate must have strong expertise in cyberattack tactics, cloud security, Kubernetes, and excellent communication skills.

Responsibility

• Leverage Snowbit's MDR platform to lead incident response investigations and proactive threat-hunting initiatives.
• Conduct log analysis and cloud artifact reviews to support incident resolution.
• Investigate and respond to security incidents in containerized environments focusing on Kubernetes.
• Research evolving cyberattack tactics to strengthen customer defenses.
• Provide technical and executive briefings to customers.
• Collaborate with internal teams to enhance MDR and incident response capabilities.
• Partner with customer teams for seamless integration of Snowbit's services.
• Share expertise through presentations and research.

Qualifications

• 3-5 years in incident response, threat hunting with strong experience in cloud security (AWS, Azure, GCP) and Kubernetes environments.
• Proven incident response experience in complex environments.
• Strong understanding of adversary tactics and techniques.
• Deep understanding of network architecture, protocols, and operating system internals (Windows, Linux, Unix).
• Expertise in Kubernetes security.
• Excellent written and verbal communication skills.
• Scripting skills (e.g., Python, PowerShell).
• Experience with Red Team operations, penetration testing, or cyber operations.
• Hands-on knowledge of attack frameworks (e.g., MITRE ATT&CK, Metasploit, Cobalt Strike).
• Proficiency in host forensics, memory forensics, and malware analysis.