Key skills
Cyber SecurityLinuxMacOSSQLCommunication
About this role
Role Overview
- Utilize Sophos technologies to investigate, contain, and respond to cyber incidents
- Conduct analysis of cyber incidents for malware, ransomware, and other attack types
- Maintain accurate and detailed documentation
- Recognize and codify attacker tools, tactics, and procedures
- Provide clear communication to MDR customers during incidents
- Work closely with internal SophosLabs, Detection Engineering, and Threat Hunting teams
- Assist in creating accurate and detailed technical incident reports
Requirements
- 3-6 years of experience conducting cyber security investigations
- Knowledge of incident response toolsets, methodologies, and techniques
- Experience creating technical documentation and reports
- Ability to work under high-pressure situations
- Network and endpoint (macOS, Linux, Windows) investigation experience
- Basic understanding of OSQuery, SQL, and KQL
- Knowledge of frameworks such as MITRE Attack and Cyber Kill Chain
- Ability to work some weekends and holidays
- Experience with Windows and Linux command and script interpreters
Tech Stack
- Cyber Security
- Linux
- MacOS
- SQL
Benefits
- Sophos operates a remote-first working model
- Employee-led diversity and inclusion networks
- Annual charity and fundraising initiatives
- Global employee sustainability initiatives
- Global fitness and trivia competitions
- Global wellbeing days for employees
- Monthly wellbeing webinars and training