Architect and build our managed Security Operations (SOC) and Incident Response (IR) services, focusing on cloud-native (AWS, GCP, Azure) and SaaS environments.
Lead complex, end-to-end incident response investigations for sophisticated attacks against cloud infrastructure, web applications, and corporate networks.
Perform deep digital forensics on hosts (Windows, Linux) and networks to determine root cause, scope, and impact.
Develop and operationalize robust IR playbooks, detection rules, and security monitoring strategies for enterprise-grade systems.
Evaluate, deploy, and manage a best-in-class security toolchain centered around SIEM/SOAR platforms.
Serve as the primary technical advisor to clients during security crises, providing clear guidance and direction.
Recruit and mentor a team of security experts as the function grows.
