SOC Detection & Automation Engineer III
USD 129K-155K (estimate) Senior-level Full Time
Tasks
- Analyze security events determine impact
- Collaborate cross functional teams on automation opportunities
- Conduct incident triage root cause scope analysis
- Design automate SOC workflows
- Design develop maintain Microsoft Sentinel detection logic
- Develop deploy automated scripts tools correlation policies
- Execute incident containment and mitigation
- Implement detection as code with version control
- Integrate security technologies using APIs
- Manage Microsoft Sentinel data connectors log ingestion
- Oversee automation initiatives and prioritize tasks
- Perform detection coverage gap analysis using MITRE ATT&CK
- Prepare incident reports and recommendations
- Translate threat intelligence into detection rules
- Tune SIEM detection rules reduce false positives
Perks/Benefits
Skills/Tech-stack
800-37 | 800-53 | Azure Logic | Azure Logic Apps | Bash | Cloud apps | Containerization | Data Connectors | Defender Suite | Defender for | Defender for Cloud | Defender for Cloud Apps | Defender for Endpoint | Defender for Identity | Detection engineering | Detection-as-code | HIPAA | Incident Response | Intrusion Detection | Intrusion Detection System | Intrusion Prevention | Intrusion Prevention System | KQL | Kusto Query | Kusto Query Language | Log Ingestion | Log normalization | Logic Apps | MITRE ATT&CK | Microsoft Defender | Microsoft Defender Suite | Microsoft Graph | Microsoft Graph Security API | Microsoft Sentinel | NIST SP | NIST SP 800 | NIST SP 800-115 | NIST SP 800-37 | NIST SP 800-53 | NIST SP-800-30 | Network Security | Networking | PCI DSS | Playbook Orchestration | Powershell | Project Management | Python | Query Language | REST APIs | SIEM | SOAR | SOAR playbooks | SP 800-115 | SP 800-30 | SP 800-37) | SP 800-53 | Security API | Shodan | Threat Intelligence | Threat hunting | Version control | Virtualization | VirusTotal | “as-code”
Education
Bachelor of Computer Science | Bachelor of Engineering | Bachelor of Science | Bachelor of Science in Computer Engineering | Bachelor of Science in Cybersecurity | Bachelor of Science in Information Systems | Bachelor of Science in Information Technology | Bachelor of Science in Software Engineering
Related jobs
-
Software Engineer USD 131K-152KAPIs | AWS | Backend Development | CI/CD | Clean Code401k | Equity awards | Flexible paid time off | Healthcare, Dental and Vision coverage | New parent or family leaveMid-level Full TimeUS Remote R21h ago
-
Senior Software Engineer USD 169K-192KAI Evaluation | AWS | CI/CD | Data Pipelines | Distributed Systems401k | Flexible paid time off | Healthcare, Dental and Vision coverage | New parent or family leave | Paid holiday time offSenior-level Full TimeUS Remote R21h ago
-
Security Engineer - Vulnerability Detection (Hybrid) USD 100K-145KAgile | Artificial Intelligence | Detection pipelines | Go | Machine LearningAdoption leave | Employee networks | Great Place to Work certified | Paid parental leave | Paid vacation and holidaysMid-level Full TimeSunnyvale, United States R1d ago
-
AWS Security Engineer USD 69K-141K800-53 | AWS | AWS GovCloud | AWS GuardDuty | AWS SecurityComprehensive healthcare | Continuing education | Family support | Flexible time off | Learning resourcesEntry-level Full Time999 REMOTE, United States R1d ago
-
BISO (Business Information Security Office) Lead USD 124K-186K800-53 | AWS | Archer | Architectural Root Cause Analysis | Architectural StandardsSenior-level Full TimeUSA - PA - Remote, United … R1d ago
-
Principal Identity Engineer - Cloud IAM / CIAM (Remote) USD 170K-227KABAC | AWS IAM | Access Management | Active Directory | Azure ADSenior-level Full TimeCalifornia Home - G4, United States R1d ago
-
AI Driven | AI Driven Security Operations | AI-driven security | AWS | AzureHybrid work flexibility | Remote work flexibility | Travel opportunitiesSenior-level Full TimeRemote - Texas, United States R1d ago
-
Software Engineer, Platform Security USD 153K-238KAWS Security | Authentication | Authorization | C++ | Code Analysis401k matching | Dental insurance | Education stipend | Health insurance | Home office improvement stipendMid-level Full TimeRemote - US R1d ago
-
Application Security Engineer USD 153K-238KAWS | Automated security | Automated security testing | Azure | Burp SuiteRemote workMid-level Full TimeRemote - US R1d ago
-
Application Security Engineer (West Coast) USD 135K-203KApplication Security | Bash | Boost | C# | C++Annual performance bonus | Comprehensive health benefits | Paid vacation | Retirement savings plan | Wellness daysMid-level Full TimeCalifornia, Oregon, Washington (Remote) R1d ago
-
Senior Sales Engineer - Healthcare USD 154K-221KAuthentication | Data Modeling | Enterprise cybersecurity | Healthcare EHR | Internet FundamentalsSenior-level Full TimeRemote - Colorado, USA R1d ago
-
Security Architect, Agentic AI USD 182K-260KAI RMF | AWS | Audit Logging | Authentication | AuthorizationEducation reimbursement | Fully remote | Parental leave options | Retirement options | Time off plans for vacation and sick timeSenior-level Full TimeRemote - USA R1d ago
-
AWS EKS | AWS Lambda | Amazon EC2 | Amazon RDS | Angular401k matching | Commuter benefits | Flexible spending account | Flexible time off | Flexible work schedulesMid-level Full TimeRemote - United States R1d ago
-
Senior Security Engineer USD 175K-200KAccess Management | Detection engineering | Identity and Access Management | Identity and access | OAuth401k | Dental insurance | Employee assistance program | Family leave | Health insuranceSenior-level Full TimeRemote - USA R1d ago
-
Senior Security Engineer USD 150K-175KAWS | AWS CDK | AWS Config | AWS Well Architected | AWS Well-Architected Framework401k employer match | Dental insurance | Health savings account | Life insurance | Medical insuranceSenior-level Full TimeUS Remote R1d ago
-
Senior Security Engineer USD 140K-160KAdversary Research | Go | Incident Response | Node.js | Python401k match | Adoption benefit | Family planning coverage | Flexible PTO | HSA contributionSenior-level Full TimeRemote - Austin, TX - Denver, … R1d ago
-
Cloud Operations Engineer USD 110K-127KActive Directory | Automation | Azure Information Protection | Connectwise | Data Loss PreventionMid-level Full TimeUnited States - Remote R1d ago
-
Cloud Security Engineer USD 85K-100KActive Directory | Anti-spam | Automation | Azure Active Directory | CIS BenchmarksIndependent work environment | Remote work abilitySenior-level Full TimeUnited States - Remote R1d ago
-
Level 2 Cyber Security Analyst USD 100K-100KAuthentication | Bash | Crowdstrike EDR | DNS | Defender for EndpointOn-call rotation | Remote work | Training and academy enrollmentMid-level Full TimeDenver, CO R1d ago
-
Senior Sales Engineer, California USD 215K-245KAPIs | Antivirus | Cloud Security | EDR | Endpoint SecurityAttractive benefits | Community building | Growth opportunities | Stock optionsSenior-level Full TimeRemote, California, US R1d ago
-
Assembly | C# | C++ | Driver verification | Embedded LinuxCareer advancement | Distributed Engineering Team | Fully remoteSenior-level Full TimeSan Diego, CA R1d ago
-
Principal DevSecOps Engineer USD 121K-166KAWS | Amazon EC2 | Ansible | Ansible Automation | Ansible Automation PlatformFlexible work arrangements | Health insurance | Hybrid work model | Life insurance | Paid time offSenior-level Full TimeTampa, FL, United States R1d ago
-
Application Security Engineer USD 110K-120KAWS GuardDuty | AWS Inspector | AWS Macie | AWS Security | AWS Security Hub401k retirement savings plan | Employer sponsored healthcare dental and vision | Flexible spending account | Health savings account | Paid parental leaveMid-level Full TimeRemote, USA R1d ago
-
Cyber Security Architect USD 150K-201K800-53 | ATO documentation | AWS GovCloud | AWS Inspector | Audit LogsAbility to lift 50 lbs | Active DoD Top Secret clearance required | Driver's license required | Fully remoteSenior-level Full TimeArlington, VA R1d ago
-
DevSecOps Engineer USD 151K-202KACAS | AWS CloudWatch | AWS CodeCommit | AWS CodePipeline | AWS GuardDutyActive DOD secret clearance | Fully remote | US citizen requiredSenior-level Full TimeArlington, VA R1d ago