Azure Security: SOC / Incident Response Specialist

Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented Team.

Job Title: Azure Security: SOC / Incident Response Specialist

Location(s): New York, NY

Role Purpose:
Lead advanced threat detection, incident response, and security operations to protect enterprise systems, data, and cloud environments from cyber threats.

• Monitor, investigate, and respond to security events using SIEM/SOAR platforms (Microsoft Sentinel, Splunk, etc.).
• Conduct deepdive incident response activities: triage, containment, eradication, recovery, and postincident analysis.
• Lead threat hunting operations to proactively identify malicious activity across endpoints, cloud, and networks.
• Develop playbooks, automation workflows, and SOC processes for improved detection and response.
• Coordinate with engineering, cloud, and IT teams to remediate findings and strengthen security posture.
• Perform forensic analysis (endpoint, logs, network) and deliver rootcause reports with actionable recommendations.

• Expertlevel understanding of SIEM, EDR/XDR, threat intelligence, and incident handling frameworks.
• Strong knowledge of attack techniques (MITRE Telecommunication&CK), malware behavior, and detection engineering.
• Experience with cloud security operations (Azure Defender, M365 Defender, identity investigations).
• Handson experience with digital forensics tools and log analysis.
• Fedramp experience.
• Relevant certifications preferred: GCIA, GCFA, GCIH, AZ500, SC200, CISSP.

• Pittsburgh, PA, Lake Mary, FL, or New York , NY / Remote is an option

Ampcus is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veterans or individuals with disabilities.