SOC Detection & Automation Engineer III
USD 129K-155K (estimate) Senior-level Full Time
Tasks
- Analyze security events determine impact
- Collaborate cross functional teams on automation opportunities
- Conduct incident triage root cause scope analysis
- Design automate SOC workflows
- Design develop maintain Microsoft Sentinel detection logic
- Develop deploy automated scripts tools correlation policies
- Execute incident containment and mitigation
- Implement detection as code with version control
- Integrate security technologies using APIs
- Manage Microsoft Sentinel data connectors log ingestion
- Oversee automation initiatives and prioritize tasks
- Perform detection coverage gap analysis using MITRE ATT&CK
- Prepare incident reports and recommendations
- Translate threat intelligence into detection rules
- Tune SIEM detection rules reduce false positives
Perks/Benefits
Skills/Tech-stack
800-37 | 800-53 | Azure Logic | Azure Logic Apps | Bash | Cloud apps | Containerization | Data Connectors | Defender Suite | Defender for | Defender for Cloud | Defender for Cloud Apps | Defender for Endpoint | Defender for Identity | Detection engineering | Detection-as-code | HIPAA | Incident Response | Intrusion Detection | Intrusion Detection System | Intrusion Prevention | Intrusion Prevention System | KQL | Kusto Query | Kusto Query Language | Log Ingestion | Log normalization | Logic Apps | MITRE ATT&CK | Microsoft Defender | Microsoft Defender Suite | Microsoft Graph | Microsoft Graph Security API | Microsoft Sentinel | NIST SP | NIST SP 800 | NIST SP 800-115 | NIST SP 800-37 | NIST SP 800-53 | NIST SP-800-30 | Network Security | Networking | PCI DSS | Playbook Orchestration | Powershell | Project Management | Python | Query Language | REST APIs | SIEM | SOAR | SOAR playbooks | SP 800-115 | SP 800-30 | SP 800-37) | SP 800-53 | Security API | Shodan | Threat Intelligence | Threat hunting | Version control | Virtualization | VirusTotal | “as-code”
Education
Bachelor of Computer Science | Bachelor of Engineering | Bachelor of Science | Bachelor of Science in Computer Engineering | Bachelor of Science in Cybersecurity | Bachelor of Science in Information Systems | Bachelor of Science in Information Technology | Bachelor of Science in Software Engineering
Related jobs
-
Security Operations Manager USD 150K-190KAnti-Malware | Asset discovery | Automation | CASB | Data Loss PreventionRemote work | Security clearance sponsorship not specified | Travel as neededSenior-level Full TimeWork from home, VA, United States R4h ago
-
Mid-level Full TimeWork from home, VA, United States R4h ago
-
Senior-level Full TimeNew York, US R6h ago
-
IDC Security Engineer USD 194K-226KAttack Vectors | CIA triad | Control Systems | Data Center Security | Data ProtectionDomestic and international travel 30 percent allowed | Telecommuting allowedMid-level Full TimeMenlo Park, CA | Remote, US R9h ago
-
AES | Certificate management | Cloud key management | Common Criteria | Crypto agility401k match | Paid time off | Remote work flexibility | Stock purchase discountSenior-level Full TimeRemote - Texas, United States R20h ago
-
Regional Sales Engineer - New England (Remote) USD 135K-205KAWS | Bash | Cloud platform | Endpoint Security | Google CloudEmployee networks | Paid adoption leave | Paid parental leave | Professional development | Remote workMid-level Full TimeUSA MA Remote, United States R20h ago
-
Security Architect USD 81K-160KAI Governance | AI/ML | AI/ML Security | API Security | AWS SecurityBonus | Health benefits | Paid time off | Retirement contributionsSenior-level Full TimeUS - VA - Remote, United … R20h ago
-
Staff Security Engineer, Proactive Security USD 193K-285KAWS | CI/CD | Cause analysis | Distributed Systems | Distributed Systems Security401k with employer matching | Basic life insurance | Commuter benefits match | Disability insurance | Family-forming assistanceSenior-level Full TimeUnited States - Remote R22h ago
-
VP, Chief Information Security Officer (CISO) USD 257K-322KAI assisted security operations | AI-assisted Security | API Security | Access Management | Application SecurityExecutive-level Full TimeUS Remote R22h ago
-
Support Engineer USD 78K-117KAPIs | AWS | Azure | Change Management | DockerCareer development | Distributed team collaboration | Learning opportunities | Night and weekend shift availability | Remote workMid-level Full TimeUnited States R23h ago
-
Senior DevOps Engineer USD 114K-174KCI/CD | Container Orchestration | Containerization | DevOps | DockerMindfulness app membership | Paid parental leave | Paid time off | Remote work | Volunteer day offSenior-level Full TimeUnited States; Remote R1d ago
-
Vendor Security Analyst USD 123K-216KAudit Evidence Collection | Audit evidence | Cybersecurity Framework | Evidence collection | GDPRFlexible work schedule | In office collaboration 1 to 2 times per quarterMid-level Full TimeChicago, IL, US; Remote, US R1d ago
-
Platform Engineering Intern USD 76K-90KCybersecurity | Go | Information security | Java | LinuxDedicated mentorship | Full team integration | Hands-on real-world projects | Project matching based on interests | Remote workEntry-level Internship TemporaryRemote (United States) R1d ago
-
Sr. Staff Software Engineer (C/C++ & Networking) USD 154K-220KC# | C++ | Networking | Rust | VPNEducation reimbursement | Health plans | Hybrid work | Parental leave | Retirement optionsSenior-level Full TimeRemote - USA; San Jose, California, … R1d ago
-
Senior Director, Cybersecurity Architecture USD 133K-176KAWS | Access Management | Application Security | Architecture Review | Cloud SecuritySenior-level Full TimeCleveland, OH, United States R1d ago
-
Detection Engineer USD 94K-118KActive Directory | Anti-virus | Azure Logging | CIM | Command Line401k retirement program | Annual Professional Development Dollars | Background check | Company holidays | Disability insuranceSenior-level Full TimeTampa, FL Hybrid R1d ago
-
Embedded Security Engineer USD 84K-96KAUTOSAR BSW | AUTOSAR SWC | C# | C++ | CI practicesAdoption and surrogacy expense reimbursement | Adoptive and Surrogacy Reimbursement | Community service paid time off | Employee resource groups | Fertility treatment supportSenior-level Full TimeDearborn, MI, United States R1d ago
-
AWS CloudFormation | Amazon Web Services | Azure | Bash | CI/CDCorporate holidays | Dental insurance | Flexible time off | Health insurance | Home internet allowanceMid-level Full TimeRemote R1d ago
-
AI Security Engineer USD 227KAPI Security | Access Management | Cloud platform | Data exfiltration | Google CloudAnnual travel to operational markets | Charitable donation matching | Coworking stipend for meetups | Fertility assistance | Flexible vacationMid-level Full TimeGhana; Kenya; Spain; United Kingdom; United … R1d ago
-
Security Architect SME USD 150K-160K800-53 | Architecture Diagrams | Architecture Risk Analysis | As Code Hardening | CISA Directives100 percent remote work | 401k matching | FSA programs | Family and dependents health coverage 25 percent | Life insurance paidSenior-level Full TimeRemote / Telework, United States R1d ago
-
Senior GRC Security Analyst USD 130K-145KAccess Management | Access reviews | Asset Management | Cause analysis | DLPSenior-level Full TimeRemote (US/Canada) R1d ago
-
Amazon S3 | Argo CD | Artifactory | Bitbucket | CI/CDPaid adoption leave | Paid parental leave | Professional development | Remote workSenior-level Full TimeUSA TX Remote, United States R1d ago
-
Senior Security Engineer USD 168K-310KActive Directory | Azure Active Directory | Certificates | Conditional Access | Entra IDSenior-level Full TimeRemote Texas, United States R1d ago
-
Application Security Developer IV USD 113K-197KAPI Security | AWS | Access Management | Advanced Security | Application SecuritySenior-level Full TimeDayton WFH, United States R1d ago
-
Cloud Security Engineer-1 USD 142K-224KAmazon Web Services | CI/CD | CSA CCM | Cloud Security | Configuration assessment401k matching | Comprehensive benefits package | Dental insurance | Hybrid work | Medical insuranceSenior-level Full TimeUSA - New Jersey - Rahway, … R1d ago