Preferred Qualifications: • Demonstrated hands-on experience leading or performing cyber security incident response, including containment, remediation, and recovery • Hands-on cloud security experience with one or more major platforms • Experience correlating events from multiple sources — including cloud-native sources — to detect suspicious and/or malicious activity • Detection engineering experience and SIEM content development and architecture • Experience building automation and/or agentic AI workflows (SOAR, scripting in Python/PowerShell, AI agents) to streamline security operations • Working knowledge of AI/LLM security concepts and the risks associated with enterprise AI adoption • Emphasis on experience with digital forensics and eDiscovery tools and methodologies • Solid understanding of adversary TTPs and the MITRE ATT&CK framework • Capacity to comprehend complex technical infrastructure, managed services, and third-party dependencies • Strong analytical and problem-solving skills . This includes: • Translating complex technical findings into clear, business-relevant language for executive and non-technical audiences • Communicating incident status, risk, and impact with accuracy and transparency, especially under pressure during active incidents • Producing clear, concise written deliverables — incident reports, executive briefings, and documentation — that withstand scrutiny • Presenting confidently and credibly to senior leadership, and fostering open, honest communication that builds trust across the team and stakeholders • Excellent proficiency in English (written and verbal) • Strong analytical and problem-solving skills • Proven ability to mentor and upskill junior analysts • Strong project management, multitasking, and organizational skills All positions may require participation in video and in-person interviews as part of the hiring process.