Description:
We are seeking a hands-on Senior Security Engineer/Analyst to build and enhance our security infrastructure. You'll deploy enterprise security platforms, develop SIEM detection capabilities, and lead technical implementation of cloud security projects. This role requires someone who understands how security technologies work internally and can configure, optimize, and troubleshoot them in production environments. You will also be conduct end to end security investigations across the incident lifecycle.
Key Responsibilities
- Deploy and configure enterprise security platforms including
- EDR solutions (CrowdStrike, SentinelOne, Defender for Endpoint),
- SIEM platforms (Splunk, CrowdStrike Falcon LogScale, Google Chronicle),
- Zero Trust network security (Zscaler-ZIA/ZPA),
- Email security (Proofpoint, EOP)
- Build and maintain SOC infrastructure including SIEM architecture, log ingestion pipelines, custom detection rules, correlation logic, and automation workflows
- Design and implement Zero Trust network security controls across hybrid cloud environments
- Lead technical security projects in AWS and Azure, including deployment of cloud-native security services (GuardDuty, Security Hub, Azure Sentinel, Defender for Cloud)
- Implement cloud security controls including CSPM solutions, secure infrastructure as code practices (Terraform, CloudFormation), and integrate application security testing (SAST/DAST) into CI/CD pipelines
- Support incident response activities through log analysis, forensic investigation, and remediation coordination
- Conduct security assessments of systems and applications, providing technical remediation guidance
- Design and build security dashboards using query languages to help the team visualize security data, track emerging threats, and measure our security posture
- Maintain documentation for security configurations, operational procedures, and incident response playbooks
- Collaborate with IT and engineering teams to implement security best practices across the organization
- This role will include an on call rotation.
Required Qualifications
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
- 5+ years of hands-on security engineering experience
- Proven experience deploying and managing enterprise security tools in production environments
- Strong understanding of SIEM platforms, including data ingestion, parsing, correlation rules, and detection engineering
- Deep knowledge of cloud security in AWS and Azure environments
- Experience with EDR platforms, network security tools, and email security solutions
- Understanding of incident response processes and security forensics
- Strong technical documentation and communication skills