Senior Security Engineer

Tasks

• Assist with client hardening
• Contribute to security engineering for endpoint tools
• Coordinate with SOC and threat intelligence teams
• Develop SIEM queries
• Execute containment actions
• Execute eradication actions
• Execute technical remediation items
• Lead technical incident analysis
• Maintain detection playbooks and response procedures
• Monitor security gaps and suspicious activity
• Operate security toolstack
• Perform alert triage and risk identification
• Perform evidence gathering and scan review
• Perform log review and IOC hunting
• Produce incident timelines and evidence packages
• Roll out phishing resistant MFA
• Serve as Tier 3 escalation point for incidents
• Support client onboarding into security tools
• Support internal security backlog remediation
• Support passkeys deployment
• Trace attacker activity and lateral movement
• Tune SIEM rules
• Tune detection logic and scan settings
• Write and maintain security SOPs and runbooks

Perks/Benefits

• N/A

Skills/Tech-stack

Applocker | CIS Benchmarks | Containment | Credential Reset | Cyrisma | DNSFilter | Defender for Endpoint | Defender for Office 365 | Detection engineering | Endpoint isolation | Eradication | Huntress | IOC hunting | Incident Response | Intune | Log Analysis | Malware analysis | Microsoft 365 | Microsoft Azure | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Sentinel | Office 365 | Passkeys | Phishing-resistant | Phishing-resistant MFA | RMM Scripting | SIEM | Security monitoring | Security operations | Security remediation | Threat Intelligence | Threat detection | ThreatLocker | Vulnerability Management