Job Description
About Aegis Cyber Solutions
Aegis Cyber Solutions is a premier provider of next-generation cybersecurity services, trusted by Fortune 500 companies and innovative startups in Silicon Valley and beyond. We are dedicated to protecting digital landscapes through proactive threat hunting, advanced incident response, and robust security architecture. Our team is comprised of the industry's brightest minds who are passionate about staying ahead of the threat curve.
Position Overview
We are seeking a highly motivated and experienced Cybersecurity Specialist to join our elite Security Operations Center (SOC) in San Jose, CA. In this high-impact role, you will be on the front lines of cyber defense, analyzing complex security events, orchestrating rapid incident response, and continuously improving our security posture. You will work with cutting-edge tools and collaborate with top-tier talent in a fast-paced, innovative environment. If you are passionate about cybersecurity and eager to make a tangible impact at global scale, this is the opportunity for you.
Responsibility
- Lead the monitoring, analysis, and triage of security events from multiple sources (SIEM, EDR, NIDS, Cloudtrails).
- Drive incident response efforts, including containment, eradication, recovery, and post-incident analysis for complex security breaches.
- Develop and refine detection signatures, correlation rules, and playbooks to enhance automated threat detection capabilities.
- Conduct proactive threat hunting exercises to identify advanced persistent threats (APTs) and novel attack vectors.
- Perform deep-dive forensic analysis on compromised systems, network logs, and memory artifacts.
- Collaborate with engineering teams to design and implement security controls across cloud, network, and endpoint environments.
- Mentor junior analysts and contribute to the continuous improvement of SOC processes and best practices.
Qualification
- 4+ years of hands-on experience in cybersecurity, with a focus on SOC operations, incident response, or threat intelligence.
- Deep expertise in SIEM platforms (Splunk, Sentinel, ELK) and EDR tools (CrowdStrike, Defender, SentinelOne).
- Proficiency in scripting and automation using Python, PowerShell, or Bash.
- Strong understanding of network protocols, operating systems (Linux/Windows), and cloud security (AWS/Azure/GCP).
- Experience with forensic analysis tools (EnCase, FTK, Volatility, WireShark).
- Industry certifications such as CISSP, GCIA, GCIH, or OSCP are highly preferred.
- Excellent analytical and problem-solving skills with the ability to communicate complex technical concepts to executive stakeholders.
- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).