Position Details

Salary $112K – $148K USD / year

Type Full-Time

Experience senior

Exp. Years 7+ years

Education Bachelor's Degree (Security / IT Related) or equivalent combination of experience

Category Cybersecurity

About this role

Senior cybersecurity operations role within the Citizens SOC/CSIRT, focusing on incident response, threat hunting, malware analysis, and security monitoring tool optimization.

Key Responsibilities

Conduct network forensics, log analysis, and malware triage; threat hunting; analyze vulnerability assessments and penetration testing; proactive malware analysis and defensive actions; develop metrics reflecting posture

Technical Overview

Technical leadership in CSIRT activities, monitoring security systems (QRadar/Arcsight/Splunk), malware analysis, threat taxonomy (MITRE ATT&CK), IOCs, and scripting for automation.

Ideal Candidate

The ideal candidate is a senior cybersecurity professional with 7+ years in security operations capable of owning CSIRT incident response programs, leading threat hunting, and maturing malware analysis initiatives across SOC tooling.

Must-Have Skills

7+ years of progressive security industry experienceBachelor's Degree (Security / IT Related) or equivalentExperience with Security Information and Event Management Tools (QRadarArcsightSplunk)Experience with threat taxonomiesMITRE ATT&CKand IOCsExperience with one or more scripting language (BashPythonPerlPowerShell)Experience with malware reverse analyzing and tools such as IDA ProOllyDbgPEiDKnowledge of Advanced Persistent Threat (APT) actors and associated toolstechniquesand procedures (TTPs)Experience in computer security incident handlingcoordination and responseKnowledge and experience required in security assessment and vulnerability scanningrisk based threat analysisand security mitigation techniques

Nice-to-Have Skills

CISSPGREMGCIHGCIACEHGCEDCISA

Tools & Platforms

QRadarArcsightSplunkGuardiumSymantecWebsenseSourceFireMcAfeeIDA ProOllyDbg

Required Skills

7+ years of progressive security industry experienceSecurity Information and Event Management Tools (QRadarArcsightSplunk)MITRE ATT&CKIOCsscripting (BashPythonPerlPowerShell)malware reverse engineering (IDA ProOllyDbgPEiD)APT knowledgeincident handlingvulnerability scanning

Hard Skills

Security Information and Event Management ToolsQRadarArcsightSplunkIntrusion Prevention ToolsGuardiumData Loss Prevention ToolsSymantecWebsenseCiscoPalo AltoCheck PointVulnerability toolsCyber Security Incident ResponseNetwork Intrusion Detection SystemsSourceFireMcAfeeHost Intrusion Detection SystemsMITRE ATT&CKIOCsBashPythonPowerShellIDA ProOllyDbgAPT

Soft Skills

Excellent oral and written communicationsAnalytical and critical thinkingSelf-motivationAbility to work under minimal supervisionStrong problem-solvingTeam collaboration

Certifications

Preferred

CISSPGREMGCIHGCIACEHGCEDCISA

Industry & Role

Industry Banking

Job Function Senior cybersecurity operations and CSIRT technical authority within the Security Operations Center

Role Subtype Security Engineer

Tech Domains Cybersecurity, Networking / TCP-IP, Python, SQL / PostgreSQL, Linux

Keywords for Your Resume

principal cyber defense ops specialistsoccsirtthreat intelligenceattack surface managementdetection engineeringsecurity information and event managementqradararcsightsplunkguardiummitre attackiocsbashpythonpowershellida promalware analysisincident responsesecurity operationsthreat hunting

Deal Breakers

Bachelor's Degree required, 7+ years of progressive security experience, Must be able to work with minimal supervision

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Principal Cyber Defense Ops Specialist

Get matched to jobs like this