Job Description We are seeking a highly skilled Monitoring, Detection, and Response Specialist to join our cybersecurity team. - Design and manage security monitoring systems to identify threats. - Optimize SIEM tools (e.g., configuring alerts, dashboards, and reports). - Continuously monitor logs and use threat intelligence to detect anomalies. - Fine-tune detection rules to reduce false positives. - Design log ingestion processes based on business needs. Key Responsibilities: - Define and lead the full incident response lifecycle (preparation to post-incident). - Coordinate with internal/external teams (IT, legal, communications). - Develop and test incident response playbooks. - Conduct post-incident reviews and simulations (e.g., tabletop exercises). - Monitor incident response tools and integrate advanced logs. - Align detection rules with MITRE ATT&CK; and other frameworks. - Define and automate incident response actions. - Establish maturity models and metrics for monitoring. - Escalate high-severity incidents (L3/L4). - Implement ticketing systems and evaluate tools for incident response. Required Skills and Qualifications - Language: Bilingual (English-Spanish), B1/B2 level. - Education: Bachelor's in Computer Science; postgraduate in cybersecurity is a plus. - Certifications: GCIH, GCFA, CEH, or similar are highly desirable. - Experience: 5+ years in cybersecurity, 3+ in detection and response. - Tools: Experience with SIEMs (Splunk, QRadar, etc.), EDR/XDR, cloud platforms (AWS, Azure, GCP). - Skills: Strong knowledge of NIST/SANS frameworks, network protocols, communication, problem-solving, and adaptability under pressure. Benefits - Opportunity to work with international teams.