QUALIFICATIONS:

• 6+ years of experience in cybersecurity consulting, with a focus on security monitoring, SOC operations, and incident response advisory. Equivalent experience in leading SOC operations is also acceptable.
• Demonstrated expertise in SIEM platforms and their optimization
• Understanding of AI/ML applications in security, including behavioral analytics and anomaly detection
• Experience in reviewing and optimizing incident response playbooks and workflows
• Familiarity with threat intelligence integration, MITRE ATT&CK framework and security orchestration tools
• Proficiency in security automation techniques and tooling, including scripting and modem SOAR platforms
• Industry certifications such as CISSP, GCIA, GCIH, or SIEM vendor specific credentials are highly desirable
• Good interpersonal and communication skills, with the ability to engage both technical teams and executive stakeholders
• Analyze and assess client facing security challenges, identify recommendations for solutions, and define a roadmap to implement such solutions successfully
• Develop, create and write and deliver documentation and technical artifacts in a professional matter that will be given to Clients and others in a professional manner

The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:

• Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program
• Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement
• Paid Time Off: PTO & Holidays, Parental Leave, Sick Leave, Military Leave, Bereavement
• Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program

EQUAL OPPORTUNITY EMPLOYER MINORITIES/WOMEN/VETERANS/INDIVIDUALS WITH DISABILITIES

Preferred locations include AL, AK, AZ, AR, DE, FL, GA, ID, IL, IN, IA, KS, KY, LA, ME, MA, MI, MN, MS, MO, MT, NE, NH, NJ, NY, NC, ND, OK, OR, PA, SC, SD, TN, TX, UT, VA, WV, WI, WY. Other locations will be considered based on fit.
Requirements:

• Design and implement advanced security monitoring frameworks tailored to client environments.
• Develop and find-tune SIEM use cases, detection rules and correlation logic to improve threat detections.
• Identify gaps in monitoring coverage and recommend enhancements to tools, processes, and configurations
• Lead the deployment, configuration and ongoing optimization of SIEM platforms (eg. Splunk Sentinel, Google SecOps, PA XSIAM)
• Support threat detection by leveraging data analytics, machine learning models and behavioral analysis techniques.
• Assess and provide recommendations on existing incident response playbooks to align with industry best practices and evolving threats.
• Guide clients in adopting cutting-edge technologies, including AI/ML, detection engineering techniques, and hyper-automation, to enhance threat detection, response and overall operational efficiency.
• Serve as a trusted advisor to clients, providing expert-level guidance on SOC maturity, monitoring strategy, and operational processes.
• Deliver comprehensive reports and presentations to key stakeholders, translating technical findings into clear business impacts.