
Core Responsibilities
1. Leads and responds to escalated cyber security alerts, cyber incidents, or related security investigations. Identifies real-time complex attack patterns and suggests mitigation strategies.
2. Leads the processes, tools and measures to monitor and detect compromises, risks, vulnerabilities, network security threats, tools and tactics used by modern and emerging threat actors. Facilitates security operations and incident response technologies and methodologies.
3. Develops, manages, maintains and enhances security controls (alerts, rules, policies, and signatures) for the security platforms.
4. Develop and enhance AI agents to streamline SOC operations and improve efficiency
5. Design and optimize prompts and workflows to support LLM-based security use cases
6. Evaluate emerging AI technologies and contribute to innovation within the SOC
7. Implement safeguards and controls to ensure secure and responsible AI usage
8. Build APIs, integrations, and automation workflows to support AI-driven capabilities
9. Write clean, maintainable, and production-ready code aligned with engineering best practices
10. Collaborate with security, engineering, and platform teams to deliver AI-enabled solutions
11. Support AI agent development and deployment across SOC use cases
12. Stay current on AI advancements and apply best practices to ongoing work
13. Mentors junior team members to improve their technical acumen
14. Participates in special projects and performs other duties as assigned.