SOC Engineer -Threat Detection & Response
Tasks
- Build SOAR playbooks and automations
- Build utilities for analyst productivity
- Build validation processes for workflows and signals
- Conduct after-action reviews and derive improvements
- Design agentic workflows and MCP tools
- Enable threat hunting at scale
- Engineer SOC workflows from intake to lessons learned
- Ensure detection operational readiness
- Evaluate build vs buy for tools
- Identify operational bottlenecks
- Implement safe automation patterns
- Improve case management and escalation
- Improve enrichment and context pipelines
- Integrate tooling across platforms
- Operationalize response plays with IR
- Standardize analyst motions
- Strengthen telemetry and data quality
- Track operational KPIs
Perks/Benefits
- Global team collaboration
- In-office position
- Opportunity for impact
- Ownership of engineering solutions
Skills/Tech-stack
AI-assisted SOC | Agentic/MCP workflows | Auditability | Data Enrichment | Detection lifecycle | Detection lifecycle management | Incident Response | Lifecycle Management | MCP workflows | Orchestration | Platform integration | Purple Teaming | Risk Management | Scripting | Security platform | Security platform integration | Security tooling | Telemetry engineering | Testing Discipline | Threat detection | Version control | Workflow automation
Education
Roles
Regions
Countries
States
Cities
Related jobs
-
Sr. Technology Engineer (Operations) / Network Engineer USD 111K-150KActive Directory | Alert triage | Azure | Azure Active Directory | Azure MonitorDocumentation and knowledge transfer | Hybrid work schedule | On-call rotationSenior-level ContractDeerfield Beach, United States6h ago
-
Cloud Security Engineer, Secret Cleared USD 102K-163K800-53 | API Integration | AWS | Application Security | Audit ReadinessMid-level Full TimeArlington/Rosslyn, Virginia, United States7h ago
-
Distinguished Engineer and UTL, Google Cloud Security USD 365K-505KArtificial Intelligence | Cloud Security | Incident Response | Machine Learning | Security EngineeringSenior-level Full TimeSunnyvale, CA, USA8h ago
-
Sr Principal Eng - Medical Device CyberSecurity USD 123K-185KAuthentication | By Design | Cybersecurity | Data Integrity | EncryptionDental | Health care | Paid time off | Retirement | Sick leaveSenior-level Full TimeIndianola, Pennsylvania, US11h ago
-
Senior Information Security Engineer USD 120K-153KDigital forensics | Evidence collection | Incident Response | Incident recovery | Log AnalysisJob training | On-call support | Professional developmentSenior-level Full TimeLittle Chute, WI, US13h ago
-
Senior Manager, System Software Security USD 272K-431KARM TrustZone | ASIL | Adversarial Robustness | C# | C++Senior-level Full TimeUS, CA, Santa Clara, United States19h ago
-
Principal System Security Engineer (Onsite) – P4 USD 107K-204KActive Directory | Backup and Recovery | COTS | FOSS | Management FrameworkHealth insurance | Paid time off | Relocation assistanceSenior-level Full TimeUS-FL-LARGO-382SS ~ 7887 Bryan Dairy Rd. …19h ago
-
Infrastructure Engineer USD 175K-210KAnsible | Backup and Disaster Recovery | Bash | Certificates | Command LineLearning opportunities | Office based work in Santa Clara | People-first cultureMid-level Full TimeSanta Clara, CA21h ago
-
Senior Detection Engineer USD 192K-242KAWS | Azure | Cloud platform | Continuous Delivery | Continuous integrationEquity grant | Flexible work location | Remote workSenior-level Full TimeUnited States - Remote R22h ago
-
Senior Cybersecurity Associate - GA - On Site USD 100K-130KAWS | Business Continuity | Cloud Security | Disaster Recovery | Endpoint SecurityOn site work 5 days per weekMid-level Full TimeDuluth, GA, US22h ago
-
Sr. IT Systems/Automation Engineer USD 143K-197KAccess Lifecycle | Access Management | Access lifecycle management | Automation | Automation platformSenior-level Full TimeMountain View, California23h ago
-
Senior Software Engineer - CTJ - Poly USD 119K-258KArtificial Intelligence | Automation | Backup and Restore | C# | C++Senior-level Full TimeRedmond, WA, US; Reston, VA, US23h ago
-
Sr Staff Cyber Security Engineer (AI) USD 145K-175KApplication Security | Azure OpenAI | CCPA | CIS Critical Security Controls | Cloud Security401k | Dental insurance | Discounts | Fully remote | Medical insuranceSenior-level Full TimeNew York, NEW YORK, United States R23h ago
-
Senior AEM Engineer / Administrator USD 100K-100KAdobe Experience | Adobe Experience Manager | Apache HTTP | Apache HTTP Server | Application Firewall10 percent domestic travel | Multiple openings available | Remote work permittedSenior-level Full TimeCleveland, OH, United States23h ago
-
Staff IAM Engineer, Sailpoint USD 115K-234KAPI | Access Control | Access Management | Access Policy | Access ReviewHybrid work modelSenior-level Full TimeRemote, US R1d ago
-
Lead Security Engineer USD 220K-260KAudit Logging | CMEK | Cloud key management | Compliance Management | DLP401k | Flexible spending account | Health insurance | Hybrid work | Office equipment allowanceSenior-level Full TimeMountain View, California, United States R1d ago
-
Senior AEM Engineer / Administrator USD 106K-150KAdobe Experience | Adobe Experience Manager | Alerting | Apache HTTP | Apache HTTP Server10 percent domestic travel allowed | Multiple openings available | Remote work permittedSenior-level Full TimeCleveland, OH, United States1d ago
-
Software Engineer, Connected Warfare USD 129K-292KAPI Design | AWS | Azure | CI/CD | Cloud Computing401k match | Adoption support | Caregiver leave | Commuter benefits | Disability insuranceMid-level Full TimeWashington, District of Columbia, United States1d ago
-
Software Engineer, Connected Warfare USD 129K-292KAPIs | AWS | Azure | Build and deployment | CI/CDCaregiver and wellness leave | Commuter benefits | Family planning and parenting support | Healthcare benefits | Income protectionMid-level Full TimeSeattle, Washington, United States1d ago
-
Access Control | Access reviews | Backup Integrity | Cause analysis | DLPMid-level Full TimePlymouth, MI, United States1d ago
-
AI | Authority to Operate | Continuous Diagnostics and Mitigation | Continuous diagnostics | Cyber SecurityMid-level ContractWoodlawn, United States1d ago
-
Security Engineer - Network Security, Anti-DDoS USD 212K-387KDDoS Mitigation | Incident Response | Malware analysis | Network Security | Security remediationMid-level Full TimeSan Jose, California, United States1d ago
-
Application Security | Black box testing | Black-box | Box testing | Code reviewMid-level Full TimeSan Jose, California, United States1d ago
-
Software Engineering Leader - Security Assurance USD 187K-281KAccess Control | Authentication | Authorization | Black box testing | Black-boxSenior-level Full TimeSan Jose, California, United States1d ago
-
Senior Security Engineer USD 110K-146KCommand Center | Endpoint Security | Enterprise Posture Management | GCP | Google Security Command CenterHybrid working model | Medical insurance | Office lunch allowance | Paid vacation | Parental leaveSenior-level Full TimeCyprus - Remote R1d ago