Incident Response Manager
Atlanta, GA · On-site
... alerts, network logs, cloud audit logs, and identity events across Microsoft, AWS, and hybrid ... Familiarity with MITRE ATT&CK, NIST 800-61, CIS Controls, ISO 27035. * Ability to communicate ...
Atlanta, GA · On-site
... alerts, network logs, cloud audit logs, and identity events across Microsoft, AWS, and hybrid ... Familiarity with MITRE ATT&CK, NIST 800-61, CIS Controls, ISO 27035. * Ability to communicate ...
Atlanta, GA · On-site
... alerts, network logs, cloud audit logs, and identity events across Microsoft, AWS, and hybrid ... Familiarity with MITRE ATT&CK, NIST 800-61, CIS Controls, ISO 27035. * Ability to communicate ...
... ATT&CK. * Utilize ticketing systems to document, track, and report on activities. * Maintain ... Working knowledge of Layer 2 and Layer 3 networking concepts, including troubleshooting related to ...
... ATT&CK. * Utilize ticketing systems to document, track, and report on activities. * Maintain ... Working knowledge of Layer 2 and Layer 3 networking concepts, including troubleshooting related to ...
... ATT&CK. * Utilize ticketing systems to document, track, and report on activities. * Maintain ... Working knowledge of Layer 2 and Layer 3 networking concepts, including troubleshooting related to ...
... ATT&CK. * Utilize ticketing systems to document, track, and report on activities. * Maintain ... Working knowledge of Layer 2 and Layer 3 networking concepts, including troubleshooting related to ...
Atlanta, GA · On-site
$203K/yr
Network and infrastructure security * Data protection and privacy * Threat management and detection ... NIST CSF, NIST 800-53, ISO 27001, CIS Controls, Zero Trust, MITRE ATT&CK, CMMC, SOC2 * Proven ...
Atlanta, GA · On-site
$203K/yr
Network and infrastructure security * Data protection and privacy * Threat management and detection ... NIST CSF, NIST 800-53, ISO 27001, CIS Controls, Zero Trust, MITRE ATT&CK, CMMC, SOC2 * Proven ...
Atlanta, GA · On-site
... network penetration testing tools, scripting languages, command and control frameworks, programming ... ATT&CK framework. • OSCP or CRTO in good standing Company : Invesco Ltd. Founded in 1981, the ...
Atlanta, GA · On-site
... network penetration testing tools, scripting languages, command and control frameworks, programming ... ATT&CK framework. • OSCP or CRTO in good standing Company : Invesco Ltd. Founded in 1981, the ...
You will partner closely with detection engineering, security operations, and incident response ... network, and application telemetry. * Translate attacker techniques, malware behaviors, and ...
You will partner closely with detection engineering, security operations, and incident response ... network, and application telemetry. * Translate attacker techniques, malware behaviors, and ...
You will partner closely with detection engineering, security operations, and incident response ... network, and application telemetry. * Translate attacker techniques, malware behaviors, and ...
You will partner closely with detection engineering, security operations, and incident response ... network, and application telemetry. * Translate attacker techniques, malware behaviors, and ...
... network or security solutions to Tier 1 telcos (experience selling to AT&T would be a +), along ... Comfortable collaborating closely with engineering, product, and pre-sales teams to co-create ...
Quick apply
... network or security solutions to Tier 1 telcos (experience selling to AT&T would be a +), along ... Comfortable collaborating closely with engineering, product, and pre-sales teams to co-create ...
Atlanta, GA · On-site
You will also influence detection engineering and response automation by identifying content gaps ... Lead complex, high-severity investigations across endpoint, network, cloud, and identity telemetry.
Atlanta, GA · On-site
You will also influence detection engineering and response automation by identifying content gaps ... Lead complex, high-severity investigations across endpoint, network, cloud, and identity telemetry.
Atlanta, GA · On-site +1
... , network support, and cybersecurity services to firms where quality matters most - the ... We are seeking an experienced and adaptable Security Operations Engineer to join our Cybersecurity ...
Atlanta, GA · On-site +1
... , network support, and cybersecurity services to firms where quality matters most - the ... We are seeking an experienced and adaptable Security Operations Engineer to join our Cybersecurity ...
... network, and identity environments. Strong detection engineering mindset with the ability to ... MITRE ATT&CK) Your Experience and Qualifications * Bachelor's degree in computer science ...
... network, and identity environments. Strong detection engineering mindset with the ability to ... MITRE ATT&CK) Your Experience and Qualifications * Bachelor's degree in computer science ...
... network, and identity environments. Strong detection engineering mindset with the ability to ... MITRE ATT&CK) Your Experience and Qualifications * Bachelor's degree in computer science ...
... network, and identity environments. Strong detection engineering mindset with the ability to ... MITRE ATT&CK) Your Experience and Qualifications * Bachelor's degree in computer science ...
Be Seen First
Atlanta, GA · On-site
$23 - $33/hr
... AT&T, Apple, and the U.S. House of Representatives ... Our digital systems, managed by custom software developed by in-house engineers, are known for ...
Quick apply
Be Seen First
Atlanta, GA · On-site
$23 - $33/hr
... AT&T, Apple, and the U.S. House of Representatives ... Our digital systems, managed by custom software developed by in-house engineers, are known for ...
... network penetration testing tools, scripting languages, command and control frameworks, programming ... Familiarity with MITRE ATT&CK framework. * OSCP or CRTO in good standing #LI-SD1 Full Time / ...
... network penetration testing tools, scripting languages, command and control frameworks, programming ... Familiarity with MITRE ATT&CK framework. * OSCP or CRTO in good standing #LI-SD1 Full Time / ...
... Publicis Groupe network. Our people are at the center of everything we do, bringing curiosity ... Familiarity with the MITRE ATT&CK or related frameworks. * Experience developing and managing ...
... Publicis Groupe network. Our people are at the center of everything we do, bringing curiosity ... Familiarity with the MITRE ATT&CK or related frameworks. * Experience developing and managing ...
... Publicis Groupe network. Our people are at the center of everything we do, bringing curiosity ... Familiarity with the MITRE ATT&CK or related frameworks. * Experience developing and managing ...
... Publicis Groupe network. Our people are at the center of everything we do, bringing curiosity ... Familiarity with the MITRE ATT&CK or related frameworks. * Experience developing and managing ...
Be Seen First
Atlanta, GA · On-site
$75K - $400K/yr
Partner with engineers, estimators, and support teams to build winning bids. * Manage your accounts ... audio-video, network infrastructure, and security systems for industries including business ...
Quick apply
Be Seen First
Atlanta, GA · On-site
$75K - $400K/yr
Partner with engineers, estimators, and support teams to build winning bids. * Manage your accounts ... audio-video, network infrastructure, and security systems for industries including business ...
Atlanta, GA · On-site
$200K - $275K/yr
... engineering to design and develop robust security frameworks and to ensure that applications ... network security solutions. * Understanding of security frameworks such as MITRE ATT&CK, NIST CSF ...
Atlanta, GA · On-site
$200K - $275K/yr
... engineering to design and develop robust security frameworks and to ensure that applications ... network security solutions. * Understanding of security frameworks such as MITRE ATT&CK, NIST CSF ...
What you bring to the role * 8+ years in security architecture, pre-sales engineering, or ... MITRE ATT&CK, CIS, NIST, etc.) * Hands-on expertise in cloud security, network security, email ...
What you bring to the role * 8+ years in security architecture, pre-sales engineering, or ... MITRE ATT&CK, CIS, NIST, etc.) * Hands-on expertise in cloud security, network security, email ...
What you bring to the role * 8+ years in security architecture, pre‑sales engineering, or ... frameworks (MITRE ATT&CK, CIS, NIST, etc.) * Hands‑on expertise in cloud security, network ...
Quick apply
What you bring to the role * 8+ years in security architecture, pre‑sales engineering, or ... frameworks (MITRE ATT&CK, CIS, NIST, etc.) * Hands‑on expertise in cloud security, network ...
$30.3K - $41.5K
0% of jobs
$41.5K - $52.8K
1% of jobs
$52.8K - $64.1K
3% of jobs
$64.1K - $75.4K
7% of jobs
$75.4K - $86.6K
12% of jobs
$87.6K is the 25th percentile. Wages below this are outliers.
$86.6K - $97.9K
21% of jobs
The median wage is $102.3K / yr.
$97.9K - $109.2K
15% of jobs
$109.2K - $120.4K
12% of jobs
$126.4K is the 75th percentile. Wages above this are outliers.
$120.4K - $131.7K
8% of jobs
$131.7K - $143K
19% of jobs
$143K - $154.3K
2% of jobs
$30.3K
$106.5K
$154.3K
| Aspect | Att Network Engineer | Network Administrator |
|---|---|---|
| Certifications | CCNA, CCNP, CompTIA Network+ | CCNA, CompTIA Network+ |
| Work Environment | Design, implement, and troubleshoot network solutions | Maintain, monitor, and support existing networks |
| Employer & Industry Usage | Telecommunications, IT services, large enterprises | Small to medium businesses, corporate IT teams |
While both roles involve network systems, an Att Network Engineer focuses on designing and implementing network solutions, whereas a Network Administrator manages and maintains existing networks. The roles often overlap but differ mainly in scope and responsibilities.

Full-time
Re-posted 8 days ago
Company Overview
Fortuna Cysec delivers unified cybersecurity operations through TheFense platform—our integrated MDR, SIEM, EDR, and response ecosystem designed for regulated industries, nonprofits, healthcare, education, and mission-driven organizations. Our global SOC/NOC operates 24×7×365, providing real-time visibility, rapid containment, and deep technical expertise across diverse customer environments.
We are expanding our Incident Response leadership team with a hands-on technical manager who thrives in fast-moving investigations and can guide customers through their most critical security events.
Role Summary
The Cybersecurity Incident Response Manager leads and directly participates in high-severity investigations across Fortuna Cysec’s customer base. This role blends technical depth, operational leadership, and customer-facing communication. You will serve as the senior escalation point for complex incidents, drive containment and remediation, and strengthen TheFense platform’s detection and response capabilities.
Lead and Execute Incident Response
· Command all phases of incident response—triage, investigation, containment, eradication, and recovery—while performing hands-on technical analysis.
· Analyze EDR telemetry, SIEM alerts, network logs, cloud audit logs, and identity events across Microsoft, AWS, and hybrid environments.
· Execute containment actions including endpoint isolation, identity disablement, MFA resets, OAuth token revocation, and firewall/network segmentation changes.
· Conduct forensic acquisition and analysis using Velociraptor, KAPE, FTK, EnCase, and Volatility.
· Reverse-engineer or sandbox suspicious binaries/scripts to determine behavior and impact.
· Lead hypothesis-driven threat hunts mapped to MITRE ATT&CK using TheFense’s unified telemetry.
Strengthen IR Operations
· Oversee daily IR operations across global SOC/NOC teams, ensuring SLA adherence and seamless follow-the-sun handoffs.
· Review and enhance IR playbooks, runbooks, and automated response actions within TheFense.
· Ensure high-quality incident documentation, evidence handling, and customer-ready reporting.
· Conduct root-cause analysis and deliver technically detailed post-incident reviews.
· Partner with engineering to refine detection logic, reduce false positives, and improve automation.
Engage Directly with Customers
· Serve as the technical authority during active breaches, guiding CISOs, IT directors, and executive stakeholders.
· Deliver clear, concise briefings that include attack path analysis, forensic findings, and prioritized remediation steps.
· Support customer teams with hands-on remediation across identity, cloud, endpoint, and email ecosystems.
· Provide strategic recommendations aligned with NIST, CIS Controls, and Fortuna Cysec best practices.
Advance Threat Intelligence and Detection
· Translate emerging threat intelligence into new detection rules, response playbooks, and threat-hunting queries.
· Validate detection logic through lab testing, simulated attacks, and historical telemetry review.
· Identify detection gaps and collaborate with TI teams to enrich investigations with IOCs and adversary behavior patterns.
Build Team and Platform Maturity
· Mentor analysts across global SOC/NOC teams in IR, forensics, cloud investigations, and threat hunting.
· Develop internal tooling and automation using Python or PowerShell.
· Participate in tabletop exercises, purple-team engagements, and breach simulations.
· Contribute to the evolution of TheFense platform by evaluating new telemetry sources and response capabilities.
Required Qualifications
Preferred Qualifications
Fortuna Cysec is an equal opportunity employer. We consider all qualified applicants for employment without regard to race, color, religion, creed, national origin, sex, pregnancy, age, sexual orientation, transgender status, gender identity, disability, alienage or citizenship status, marital status or partnership status, genetic information, veteran status or any other characteristic protected under applicable law.