Job Description
At Aegis Cyber Solutions, we are at the forefront of digital defense. We are actively seeking a highly skilled and motivated Cybersecurity Specialist to join our elite team in San Francisco. This is not just another IT role; it is a critical position within our Security Operations Center (SOC) where you will lead threat detection, incident response, and vulnerability management for Fortune 500 clients.
You will be the tip of the spear, working with cutting-edge SIEM and XDR platforms to protect critical infrastructure. We value continuous learning, proactive threat hunting, and a relentless commitment to securing our digital landscape. If you thrive in a fast-paced, collaborative environment and possess a deep technical understanding of network security, cloud security (AWS/Azure), and compliance frameworks, we want to speak with you.
Why Join Aegis?
- 100% Remote-flex work environment (with a preference for Bay Area candidates).
- Competitive salary & equity packages.
- Annual training budget of $5,000 for certifications (CISSP, OSCP, etc.).
- Work with a team of industry veterans and top-tier talent.
Responsibility
- Monitor security alerts and events from various sources (SIEM, IDS/IPS, EDR) and conduct thorough analysis to identify potential threats.
- Lead incident response activities, including containment, eradication, and forensic analysis.
- Conduct regular vulnerability assessments and penetration tests on internal and external systems.
- Develop and refine security policies, procedures, and playbooks to enhance our security posture.
- Collaborate with engineering teams to ensure security is integrated into the Software Development Lifecycle (DevSecOps).
- Manage and optimize security tools, ensuring maximum coverage and effectiveness.
- Provide expert guidance on security best practices and emerging threats to stakeholders.
Qualification
- 3+ years of hands-on experience in a Cybersecurity role, preferably within a SOC or Incident Response team.
- Deep knowledge of network protocols, firewalls, and security architectures.
- Proficiency with SIEM platforms (Splunk, Sentinel) and EDR tools (CrowdStrike, Defender).
- Experience with cloud security best practices (AWS, Azure, or GCP).
- Strong understanding of MITRE ATT&CK framework and cyber kill chain methodology.
- Relevant certifications (GSEC, CISSP, CISM, OSCP) are highly preferred.
- Excellent written and verbal communication skills, with the ability to translate technical risks to non-technical audiences.
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).