Senior Security Operations Engineer
United States - Remote
R
USD 120K-150K (estimate) Senior-level Full Time
Tasks
- Build MITRE ATT&CK detection rules
- Build SIEM and EDR correlation rules
- Build SOAR playbooks
- Build vulnerability dashboards in Google SecOps
- Close logging coverage gaps
- Conduct detection quality reviews
- Configure Cloud Funnel log export
- Configure Google SecOps SOAR
- Coordinate remediation with engineering and infrastructure
- Define remediation SLAs by severity
- Develop SOC operational dashboards
- Develop custom parsers for AWS security services
- Drive SOC OKR execution
- Drive SentinelOne deployment
- Establish auditable SOC processes
- Identify analyst skill gaps and coach junior analysts
- Integrate incident response with Jira Service Management
- Maintain incident response runbooks
- Manage Google SecOps RBAC
- Manage MSSP transition coverage
- Manage SentinelOne RBAC and policies
- Operationalize vulnerability scanning cadence
- Optimize alert thresholds
- Own SIEM log ingestion pipeline
- Provide MSSP technical oversight and SLA enforcement
- Provide day to day SOC technical leadership
- Review MSSP deliverables for quality
- Run detection lifecycle tuning and retirement
- Run tabletop exercises and after action reviews
- Serve as incident response escalation point
- Track vulnerability SLA compliance metrics
Perks/Benefits
- Equity
- Flexible hours
- Generous PTO
- Medical/Dental/Vision insurance
- Performance bonus eligible
- Remote-first culture
Skills/Tech-stack
800-172 | 800-53 | AWS CloudTrail | AWS Config | AWS GovCloud | AWS GuardDuty | AWS Inspector | AWS Security | AWS Security Hub | AWS WAF | Alert Correlation | Azure Defender | Azure Defender for Cloud | Azure Log Analytics | Chronicle | Defender for | Defender for Cloud | Defender for Endpoint | Detection engineering | EDR alert correlation | Entra ID | Event Hubs | FedRAMP | FedRAMP High | Flow Logs | Google SecOps | Google SecOps RBAC | Incident Response | Jira Service | Jira Service Management | Log Analytics | Log Ingestion | MITRE ATT&CK | MSSP SLAs | MTTA | MTTR | NIST 800 | NIST 800-172 | NIST 800-53 | Nessus | RBAC | SIEM | SIEM log ingestion | SOAR | SOAR playbooks | Security Hub | SentinelOne | SentinelOne Cloud Funnel | SentinelOne EDR | Service Management | VPC Flow Logs | VPC flow | Vulnerability Management
Education
N/A
Related jobs
-
Senior Detection and Response Engineer USD 243K-295KAlert triage | Cloud Security | Container Security | Data Pipelines | Detection engineeringEquity compensation | Health and wellness benefits | Onsite/Hybrid scheduleSenior-level Full TimeSan Mateo, CA, United States R13h ago
-
Sr. Security Engineer 1 (Customer Trust) USD 145K-193K800-53 | AWS | CASB | CCSP | CI/CD401k match | Dental insurance | Flexible time off | Health insurance | Life insuranceSenior-level Full TimeBellevue, WA, USA R14h ago
-
Director, Field Security USD 204K-255KCompliance Management | Container Security | Diligence Questionnaires | Due Diligence | Due Diligence QuestionnairesHybrid workExecutive-level Full TimeRaleigh, North Carolina, USA R17h ago
-
Staff Engineer, Identity & Access Management (IAM) USD 180K-212KABAC | Access Management | Active Directory | Adaptive Authentication | Amazon Web ServicesAnnual bonus | Comprehensive benefits package | Equity compensation | Remote work eligibilitySenior-level Full TimeSalt Lake City, Utah R18h ago
-
AI Security Architect (REMOTE) USD 150K-200KAI Security | Artificial Intelligence | Azure Data | Azure Data Lake | Azure Data Lake StorageMentoring | Professional development | Remote workSenior-level Full TimeFranklin, TN R1d ago
-
Cyber Security Specialist USD 80K-128KAWS | Access Management | Anomaly Detection | Bash | CVE AnalysisMid-level Full TimeUnited States R1d ago
-
Associate Cyber Security Analyst (Remote) USD 61K-104KAWS | Access Control | Azure | Cybersecurity | Endpoint protectionOn-call rotation | Remote work | Travel 1-2 times per yearMid-level Full TimeNationwide Remote Office (US99), United States R1d ago
-
Cloud Engineer - Senior (Observability) USD 87K-157KAPM | ARM | AWS RDS | AWS X-Ray | Alert Engineering24x7x365 on call supportSenior-level Full Time6314 Remote/Teleworker US, United States R1d ago
-
Product Security Engineer USD 118K-190KAuthorization | Automation | Cloud Security | Container Security | Containerized Environments401k employer match | Employee stock purchase plan | Paid parental leave | Paid time off | Remote work flexibilityMid-level Full TimeRemote US DC, United States R1d ago
-
Budgeting | CMMC | Cloud Migration | Cloud Security | Continuous MonitoringHealth insurance | Life insurance | Remote work | Voluntary lifestyle benefitsSenior-level Full TimeRemote, US R1d ago
-
SKILLBRIDGE - ACTIVE DUTY ONLY: Cyber Security USD 85K-85KApplication Security | Application Security Testing | Awareness Training | Business Continuity | Cloud SecurityExam fee support | Exam preparation support | Hybrid work | Mentorship program | Remote work optionSenior-level Full TimeNationwide, Hybrid, US R1d ago
-
IT Security Analyst USD 100K-165KActive Directory | Antimalware | Antivirus | Azure Active Directory | Cisco Firewall401k match | Dental insurance | Hybrid work schedule | Medical insurance | Paid HolidaysMid-level Full TimeConshohocken R1d ago
-
Information Security Analyst USD 81K-107K800-171 | AWS | Access Control | Access reviews | Azure401k match | 9/80 schedule | Healthcare | Paid maternity and parental leave | RemoteMid-level Full TimeMojave, CA R1d ago
-
Senior Security Engineer USD 215K-286KAWS IAM | AWS VPC | Amazon CloudTrail | Amazon GuardDuty | Buildkite401k match | Co-working stipend | Company offsites | Health, dental, and vision insurance | Home office stipendSenior-level Full TimeUnited States R1d ago
-
SecOps Engineer USD 111K-155KAI analysis | AWS | Detection and Response | Git | Incident Response401k match | Dental insurance | Disability coverage | Employee assistance program | Employee resource groupsEntry-level Full TimeUnited States | Remote R1d ago
-
Platform Engineer - Secret/Top Secret USD 123K-201K800-171 | 800-53 | AWS | Azure | Bash401k retirement plan | Company paid medical dental vision premiums | Conferences | Disability insurance | Federal HolidaysSenior-level Full TimeRemote, United States R1d ago
-
Senior Cloud & Systems Engineer USD 110K-125KAD Connect | AI Assisted Development | API Integration | Active Directory | Amazon Web ServicesSenior-level Full TimeLafayette, CO R1d ago
-
Senior-level Full TimeUnited States R1d ago
-
Systems Administrator USD 80K-115KAWS ECS | AWS EKS | AWS GovCloud | Agile | AnsibleDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offMid-level Full TimeRemote (United States) R1d ago
-
Senior Information Assurance / Cyber Analyst USD 108K-176K800-53 | Agile | Checkmarx | Continuous Monitoring | Control ImplementationDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offSenior-level Full TimeRemote (United States) R1d ago
-
Incident Response Manager, Contract USD 151K-170KAlert Tuning | Correlation rules | Detection and Response | EDR | Endpoint Detection and ResponseMid-level Full TimeHybrid, United States R2d ago
-
Cloud Security Engineer/Architect (Hybrid) USD 106K-222KAI Gateway Security | AI gateway | AKS | API Security | APTsContract-to-hire | Hybrid work | Public trust clearance supportSenior-level Full TimeFalls Church, VA, United States R2d ago
-
AI Security Engineer USD 165K-215KAccess Management | Adversarial Machine Learning | Authorization | Cryptography | Data exfiltrationSenior-level Full TimeUnited States - Remote R2d ago
-
Oracle Cloud Security Engineer USD 96K-223KAccess Management | CCSP | CIS Benchmarks | CISSP | Cloud GuardMid-level Full TimeUnited States - Remote R2d ago
-
Application Security Engineer USD 120K-195KAbuse detection | Agile | Architecture Reviews | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R2d ago