FreeHire

Fireblocks

SecOps Expert

Show

You will secure and administer infrastructure and security platforms, manage and respond to incidents, and perform host and malware analysis. You will leverage machine learning and generative AI to automate workflows and improve detection, develop detection logic and runbooks, coordinate containment with stakeholders, and produce incident reports. This hybrid role requires regular on-site presence at the New York office and occasional on-call weekend support.

Responsibilities

  • Manage and administer security platforms and tools
  • Provide expert advice and support on complex security matters
  • Use machine learning and generative AI to automate workflows and build proactive security solutions
  • Identify breach attempts, contain and eradicate threats, and streamline incident response
  • Continuously test and improve security controls and leverage threat intelligence
  • Investigate alerts, triage, and define remediation plans
  • Perform host-based analysis, artifact analysis, and malware analysis
  • Coordinate investigation, containment, and response with stakeholders
  • Develop incident analysis and findings reports with recommendations
  • Recommend or develop detection logic and tune sensors and controls
  • Assess security solutions and augment traditional controls with AI-based defenses
  • Provide occasional weekend and on-call support

Requirements

  • 4+ years experience working in an Incident Response/Cyber Security Operations Center creating, escalating, and managing security incidents using traditional and AI-augmented SOC tools
  • Experience managing low to high-risk cybersecurity alerts and incidents leveraging ML and AI-based anomaly detection
  • Collaborate with stakeholders to drive incident response and remediation
  • Develop common runbooks for frequent or critical incident types
  • 3+ years working with security tools such as SIEM, Analytics & Intelligence, Intrusion Detection, Malware detection, Data Loss Protection, and Identity & Access Management
  • Familiarity with cloud services, Kubernetes, cloud environment architecture, and major cloud providers (AWS, GCP, Azure)
  • Solid understanding of system and security controls on at least two operating systems (Windows, Linux/Unix, MacOS) including host-based forensics and OS artifact analysis
  • Problem-solving mindset and drive to integrate AI and machine learning into daily security operations
  • Preferred: Experience developing or integrating AI-driven tools (LLMs or ML models) to automate SecOps workflows
  • Preferred: Bachelor's degree in Computer Science, Information Technology, or related field
  • Preferred: Familiarity with Infrastructure as Code and DevSecOps practices including monitoring across CI/CD pipelines