Job Description
Role: Azure Security: SOC / Incident Response Specialist
Location: Pittsburgh, PA, Lake Mary, FL, or New York , NY / Remote is an option
Must be US Citizen
1 Position
JD
Role Purpose:
Lead advanced threat detection, incident response, and security operations to protect enterprise systems, data, and cloud environments from cyber threats.
Key Responsibilities:
- Monitor, investigate, and respond to security events using SIEM/SOAR platforms (Microsoft Sentinel, Splunk, etc.).
- Conduct deep-dive incident response activities: triage, containment, eradication, recovery, and post-incident analysis.
- Lead threat hunting operations to proactively identify malicious activity across endpoints, cloud, and networks.
- Develop playbooks, automation workflows, and SOC processes for improved detection and response.
- Coordinate with engineering, cloud, and IT teams to remediate findings and strengthen security posture.
- Perform forensic analysis (endpoint, logs, network) and deliver root-cause reports with actionable recommendations.
Required Skills & Experience:
- Expert-level understanding of SIEM, EDR/XDR, threat intelligence, and incident handling frameworks.
- Strong knowledge of attack techniques (MITRE Telecommunication&CK), malware behavior, and detection engineering.
- Experience with cloud security operations (Azure Defender, M365 Defender, identity investigations).
- Hands-on experience with digital forensics tools and log analysis.
- Fedramp experience
- Relevant certifications preferred: GCIA, GCFA, GCIH, AZ-500, SC-200, CISSP.
Apply tot his job
Apply To this Job