Senior Security Operations Engineer

Tasks

• Automate security response workflows
• Build SIEM detection content
• Build SOAR playbooks
• Conduct digital forensics
• Conduct threat hunting
• Coordinate cross-functional incident response
• Create post-incident reports
• Design LLM automation workflows
• Detect AI application threats
• Develop behavioral analytics
• Document incident findings and runbooks
• Implement human-in-the-loop validation
• Lead incident response
• Maintain correlation rules
• Manage detection as code pipelines
• Map detections to MITRE ATT&CK
• Monitor and tune EDR
• Monitor and tune SIEM
• Monitor and tune cloud security tools
• Perform containment eradication recovery
• Preserve evidence

Perks/Benefits

• Career development budget
• Complimentary Lunch Dinner
• Festival bonus
• Gym membership
• Hajj Umrah leave
• Hybrid work
• Leave encashment
• Maternity leave
• Medical insurance
• Mobile Data Allowance
• Paid time off
• Paternity leave
• Performance reward
• Referral bonus
• Transportation
• Unlimited tea & coffee

Skills/Tech-stack

AWS | AWS Security | AWS Security Hub | Amazon GuardDuty | Bash | Behavioral analytics | Cloud Security | CloudTrail | Cortex XSOAR | Detection engineering | Detection-as-code | Digital forensics | EDR | EDR tuning | Evidence collection | IAM | Incident Response | KQL | LLM Top 10 | Linux | MITRE ATLAS | MITRE ATT&CK | MacOS | Microsoft Sentinel | OWASP LLM | OWASP LLM Top 10 | Phantom | Powershell | Python | SIEM | SOAR | Security Hub | Security operations | SentinelOne | Splunk | Splunk SOAR | Threat Intelligence | Top 10 | Windows | “as-code”