Regional SOC (Security Operations Center) Incident Response Engineer

The Regional Security Operations Center (SOC)/Incident response Engineer is responsible for implementing and maintaining security controls and systems in the Americas region. This position also works within the global SOC to detect, analyze, respond to, and recover from security incidents, protecting the assets and the infrastructure within the region.

*This position is office-based in Newport News, VA. or Saline, MI.*

Responsibilities

• Monitors and implements security tools and technologies (e.g., firewalls, IDS/IPS, SIEM) to detect security events and potential incidents within the region
• Analyses security alerts and logs to identify true positives and prioritize incidents based on severity
• Collaborates with other security teams to resolve security issues e.g. during an incident
• Supports Information Security Governance by providing insights
• Documents incident details, findings, and remediation steps accurately
• Ensures availability and optimal performance of SOC tools within the region
• Supports Information Security Governance by providing expertise
• Collaborates closely with Corporate IT and Divisions
• Collaborates closely with Global SOC Team
• Security operations teams & administrators
• Functionally reports to Head of Global SOC

Competencies

• Education and Experience: Bachelor's degree in Cybersecurity, Computer Science, Information Technology or related discipline and 4 years of IT experience focused on Information Security relevant technologies; or combination of equivalent education, training, certification, and 8 years relevant experience. Information Security certifications (such as CISSP: Certified Information Systems Security Professional; CEH: Certified Ethical Hacker; CISM: Certified Information Security Manager; GIAC: Global Information Assurance Certification) can be accepted in lieu of Bachelor’s degree. Security+ preferred.
• Strong technical skills in network, system, and application security relevant to incident detection and response
• Understanding of security concepts and technologies used in SOC environments (e.g., SIEM, IDS/IPS, EDR, vulnerability scanners)
• Proficiency in configuring and managing security tools and systems
• Knowledge of network security frameworks (NIST, ISO)
• Familiarity with incident response methodologies and frameworks
• Experience with scripting and automation
• Good communication and collaboration skills
• Good analytical and troubleshooting skills
• Good problem-solving and decision-making skills
• Good attention to detail, which is critical for accurate incident analysis and documentation
• Ability to remain calm and focused under pressure during security incidents
• Travel domestically and internationally occasionally.
• Ability to obtain and maintain a valid driver license and passport.

Our Offer

An interesting and ambitious role in a successful international company. We offer a secure work environment with a comprehensive benefits package that includes major medical, dental and vision insurance, 401K plan with company match, paid vacation and personal days and competitive salary.

Referral Bonus: Tier III

Have we awoken your interest? Then we look forward to receiving your online application. If you have any questions, please contact Thomas Steele.

Liebherr-America, Inc. and its US affiliates are Equal Opportunity Employers. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
If you are a California resident, please visit Liebherr USA, Co. Privacy Statement for more information regarding how Liebherr-America, Inc. and its US affiliates collect and process your personal information.

One Passion. Many Opportunities.