BlackCloak’s mission is to protect corporate executives and high-profile individuals in their personal lives, mitigating risks to their families, companies, reputation, and finances. We defend our clients’ digital lives from hackers, privacy leaks, and identity theft. This unique hybrid role requires a technical expert who can secure an endpoint and network infrastructure just as effectively as they can protect a personal credit profile.
Requirements
- Deploy and configure Endpoint Detection and Response (EDR) agents across client environments.
- Analyze EDR telemetry to detect 'living off the land' attacks and anomalies that traditional antivirus would miss.
- Actively monitor client endpoints for malicious indicators and communicate the scope of the incident to the customer and cross-functional teams supporting the customer.
- Generate monthly executive summaries for clients detailing blocked attacks, health status, and ROI on their security investment.
- Schedule and run next-gen vulnerability scans on client networks and execute penetration tests as applicable against client assets.
- Monitor for threats and vulnerabilities specific to 'Smart Home' and Internet of Things (IoT), alert impacted clients, and assist clients in the hardening of their home networks and IoT devices.
- Proactively monitor the Dark Web and criminal forums for our clients' compromised credentials, leaked intellectual property, or domain spoofing.
- Work with cross-functional teams to alert clients immediately upon discovery of leaked data and provide specific instructions on changing passwords or locking down accounts.
- Manage the credit monitoring platform, and alert clients to changes in credit scores, new credit inquiries/accounts and other identity alerts that could indicate fraudulent activity.
- In conjunction with Client Success Managers, serve as the dedicated case manager for confirmed identity theft incidents.
- Assist in the restoration of compromised accounts, including synthetic identity fraud, medical identity theft, and tax refund fraud.
- Actively hunt for client PII on people-search sites and data broker databases.
- Identify repetitive manual tasks and build SOAR playbooks or scripts to automate them.
- Evaluate and implement AI-driven tools to enhance threat detection accuracy.
- Continuously assess our toolset's architecture and optimize API integrations between our Identity platforms, EDR, and ticketing systems.
- Conduct 'Post-Mortem' reviews after incidents or complex identity cases to identify process gaps, updating standard operating procedures (SOPs) to be faster and smarter next time.
- Recognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations.
- Develop custom scripts, tools, or methodologies to enhance our Incident Response processes.
- Develop comprehensive and accurate reports of forensic findings and Incident Response activities for both technical and executive audiences.
- Be part of an on-call rotation and escalation team.
- Participate in knowledge transfer sessions, product training, and other strategic initiatives as needed.
- Maintain working knowledge of BlackCloak’s solutions, platform features, and best practices.
- Mentor and support Client Success and Security Team Members.
- Work closely with the engineering and product teams to continuously improve BlackCloak products.
- Perform research and development on the latest cyber security attack and defense trends.
- Work with the sales team to do technical demonstrations and provide subject matter expertise.
Benefits
- 100% Remote Company
- Comprehensive Medical, Dental, and Vision plans
- Health Savings Account
- Flexible Vacation Plan
- 10 Paid Company Holidays
- 100% employer-paid Life, AD&D and Short- and Long-Term Disability Insurance
- 401k with Traditional and Roth options, including employer match
- Company Equity
- Paid Parental and Pregnancy Recovery Leave
- Company and team off-sites and virtual events throughout the year
- Home office stipend
