Overview
Cybersecurity Senior Engineer/Customer Cyber Threat Response Jobs in Atlanta, Georgia, USA at Cox
Title: Cybersecurity Senior Engineer/Customer Cyber Threat Response
Company: Cox
Location: Atlanta, Georgia, USA
Type: Full Time
Category: Security, IT/Tech
Position: Cybersecurity Senior Engineer (Customer Cyber Threat Response)
We are seeking a skilled and detail-oriented Cybersecurity Senior Security engineer, who will be focused on customer-related security operations and incident response. This role is critical in detecting, analyzing, and responding to security incidents impacting our customers and products. The ideal candidate will leverage their expertise in Security Operations (Sec Ops), Incident Response (IR), and threat detection to ensure mitigation and resolution of security threats.
Security Operations
Conducts threat analysis and alert triage using various security tools (e.g., SIEM, EDR, Intelligence platforms).
Investigates and responds to escalations involving phishing, account takeovers, data breaches, and other security issues.
Performs threat hunting to proactively identify malicious and fraudulent activity.
Analyzes threat intelligence to identify and mitigate emerging threats to businesses and customers.
Creates investigation workflows and steps, aligned to threat resolution.
Continuously improves and maintains investigation workflows, achievingprocess optimizationand improved threat detection.
Collaborates with various teams and MSS, continuously improving cybersecurity capabilities (prevention, detection, response).
Supports customer-facing teams and relevant business stakeholders for various security issues.
Proposes and helps review security plans and policies to improve organizational security posture.
Provides off-hour support as needed for security administration, detection, and response activities.
Incident Response
Investigates and responds to customer impacting security incidents (e.g., Denial of Service, data breaches).
Investigates tactics, techniques, and procedures (TTPs) used by threat actors conducting malicious activity.
Correlates incident data to identify threat trends and specific vulnerabilities.
Conducts root cause analysis and develops remediation strategies to prevent incident recurrence.
Documents response activities and mitigation measures for internal and external stakeholders.
Plans, implements, and maintains incident handling procedures, continuously improving response effectiveness.
Service Desk and Incident Management
Supports investigations and resolution of customer-based security issues.
Project Responsibilities
Partners with teams, designs, implements, and refinescustomer-focuseddetection rules and processes.
Defines KPIs, builds dashboards, and reports on detection and response performance.
Professional Technology Skills (the professional technology skills you need to be able to do the job)
Ability to:
Work with technical teams along with external MSSPs, for security monitoring of DDoS Protection, Email systems, Application logs, Intelligence platforms, and Endpoint security technologies.
Perform data analytics, security event correlation, and issue triage.
Apply security Threat Intelligence to respond appropriately to security events.
Work on projects to improve security monitoring and response capabilities.
Demonstrate a strong understanding of Zero Trust and security best practices.
Demonstrate a strong security engineering and architecture background.
Demonstrateeffective communicationof security issues to management and peers.
Maintain security monitoring guidelines and standards.
Perform incident response and forensic activities for internal and external threats.
Work with interna…
