Security Operations Detection Engineer
We are seeking an experienced Security Operations Detection Engineer to join our team. This role is responsible for the architecture, engineering, and automation of in-house security platforms, including Microsoft Sentinel SIEM and associated SOAR tooling. You will work closely with various IT teams to optimize log ingestion, data enrichment, and alerting to improve security operations.
Key Responsibilities:
- Deploy new detections and automations within the SIEM/SOAR platform.
- Create and implement SIEM content such as rules, alerts, and dashboards.
- Improve analytics and reduce false positives through regular assessments and tuning.
- Design automation for alert enrichment and response actions.
- Partner with teams to enhance security monitoring across business applications.
- Manage and maintain Security Operations tooling and incident response processes.
Requirements:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 3+ years in a security-related engineering role with 2+ years of SIEM/SOAR experience.
- Deep knowledge of Microsoft Sentinel, Defender, and other security tools.
- Strong automation skills with Terraform, KQL, Python, PowerShell, and Microsoft Power Apps.
- Familiarity with log ingestion methodologies and API development.
- Certifications such as CISSP, CISM, or CEH are a plus.
Benefits & Perks:
- 25 days PTO + 12 company holidays.
- Company-paid life insurance, disability, and parental leave.
- Optional medical, dental, and vision benefits.
- 401(k) with discretionary match.
This is a dynamic, hands-on role in a fast-paced environment where you will have the opportunity to significantly impact our security operations. Apply today!