Incident Response Engineer
1 week ago
You desire impactful work.
You're
RGA ready
RGA is a purpose-driven organization working to solve today's challenges through innovation and collaboration. A Fortune 500 Company and listed among its
World's Most Admired Companies
, we're the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.
A Brief Overview
Responsible for supporting and executing standards, procedures, and processes to monitor, maintain, and create new detections. Supports telemetry health monitoring to ensure existing monitoring/alerts are performing as intended. Enable global Security Operations by participating in on-call rotations, alert triage, investigations, and engineering.
What You Will Do
- Participates in 24/7 on-call rotation, alert triage, and investigations
- Support the team in the Incident Response Lifecycle (readiness, training, response, command, post-mortem)
- Utilizing CI/CD pipeline, assists with monitoring, maintaining, and optimizing existing detections to ensure high fidelity and low noise detections, inclusive of Detection Playbooks.
- Supports the validation of security telemetry health and the identification of gaps in telemetry that may introduce risk to the organization.
- Supports efforts to identify and close detection and telemetry gaps
- Contributes to purple team exercises by assisting with hunt, data and detection validation.
- Collaborates with team members and partner teams to capture detection requirements and implement new detections based upon those requirements.
- Supports purple team engagements for the SOC, identifying and tracking findings. ensuring actionable detection recommendations and security improvements.
- Performs other duties as assigned
Qualifications
Bachelor's degree or equivalent experience
Required
- 1+ year of hands-on experience in a Security Operations Center (SOC) or similar environment, with a focus on incident response, threat investigations or detection development
- Foundational analytical skills with the ability to investigate activity across network, host, cloud, and identify platforms.
- Ability to operate effectively in a globally distributed team environment.
- Strong written and verbal communications skills with the ability to effectively collaborate with partner teams
- 1+ year experience creating automation\workflows to scale security operations
- 1+ year experience using Threat Intelligence to enhance monitoring and detections
- 1+ year experience identifying and addressing telemetry gaps in security monitoring
- 1+ year experience contributing to purple team exercises, including supporting risk hunting, telemetry validation, and detection efficacy
Technical Requirements
- General knowledge of SIEM/SOAR technology (Splunk, CrowdStrike, Sentinel, etc.)
- EDR Platforms (CrowdStrike, Microsoft Defender, etc.)
- Network and client / server technologies and standards
- Malware prevention and remediation
- General knowledge of Cloud Computing Security (AWS, Azure, GCP)
- AM/AAA technologies and architectures (Entra/Active Directory, Okta, OpenID, SAML, Oauth, JWT, LDAP)
- General email security concepts
- M365 Suite and Environment
- Forensic tools (FTK, Encase, X-Ways, SIFT) ServiceNow
What you can expect from RGA
- Gain valuable knowledge from and experience with diverse, caring colleagues around the world.
- Enjoy a respectful, welcoming environment that fosters individuality and encourages pioneering thought.
- Join the bright and creative minds of RGA, and experience vast, endless career potential.
-
Security Engineer
4 days ago
London, Greater London, United Kingdom incident Full timeAbout is the leading all-in-one platform for incident management. From small bugs to major outages, helps teams respond fast, reduce downtime, and improve every time something goes wrong.Since launching in 2021, we've helped 800 companies—including Netflix, Airbnb and Block—resolve over 250,000 incidents. Every month, more than 30,000 responders across...
-
Security Engineer
4 days ago
London, Greater London, United Kingdom incident Full timeAbout is the leading all-in-one platform for incident management. From small bugs to major outages, helps teams respond fast, reduce downtime, and improve every time something goes wrong.Since launching in 2021, we've helped 800 companies—including Netflix, Airbnb and Block—resolve over 250,000 incidents. Every month, more than 30,000 responders across...
-
Security Engineer, Incident Response
2 weeks ago
London, Greater London, United Kingdom Meta Full time £80,000 - £120,000 per yearMeta Security is looking for an Incident Response Engineer with experience coordinating, investigating and responding to internal and external threats. You will help the team establish, lead and execute multi-year roadmaps to mature investigative and response services, drawing upon automation and cross functional partnerships to create scalable and resilient...
-
Platform Engineer
4 days ago
London, Greater London, United Kingdom incident Full timeAbout is the leading all-in-one platform for incident management. From small bugs to major outages, helps teams respond fast, reduce downtime, and improve every time something goes wrong.Since launching in 2021, we've helped 800 companies—including Netflix, Airbnb and Block—resolve over 250,000 incidents. Every month, more than 30,000 responders across...
-
Platform Engineer
4 days ago
London, Greater London, United Kingdom incident Full timeAbout is the leading all-in-one platform for incident management. From small bugs to major outages, helps teams respond fast, reduce downtime, and improve every time something goes wrong.Since launching in 2021, we've helped 800 companies—including Netflix, Airbnb and Block—resolve over 250,000 incidents. Every month, more than 30,000 responders across...
-
Design Engineer
2 weeks ago
London, Greater London, United Kingdom incident Full time £90,000 - £120,000 per yearAbout is the leading all-in-one platform for incident management. From small bugs to major outages, helps teams respond fast, reduce downtime, and improve every time something goes wrong.Since launching in 2021, we've helped 800 companies—including Netflix, Airbnb and Block—resolve over 250,000 incidents. Every month, more than 30,000 responders across...
-
Incident Response Manager
1 week ago
London, Greater London, United Kingdom Waymo Full time £88,000 - £95,000 per yearWaymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—The World's Most Experienced Driver—to improve access to mobility while saving thousands of lives now lost to traffic crashes. The Waymo...
-
Incident Response Manager
6 days ago
London, Greater London, United Kingdom Waymo Full time £88,000 - £95,000 per yearWaymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—The World's Most Experienced Driver—to improve access to mobility while saving thousands of lives now lost to traffic crashes. The Waymo...
-
Incident Response
4 days ago
London, Greater London, United Kingdom NETbuilder Full time £120,000 - £180,000 per yearLondonPermanentNETbuilderis a leading provider of innovative technology solutions, helping clients achieve operational excellence through our expertise in observability and cybersecurity. We are committed to fostering a collaborative environment where professionals can thrive and make a significant impact.We're recruiting for an experienced Incident Response...
-
Product Engineer
4 days ago
London, Greater London, United Kingdom incident Full time £110,000 - £165,000 per yearAbout is the leading all-in-one platform for incident management. From small bugs to major outages, helps teams respond fast, reduce downtime, and improve every time something goes wrong.Since launching in 2021, we've helped 800 companies—including Netflix, Airbnb and Block—resolve over 250,000 incidents. Every month, more than 30,000 responders across...
