Security Engineer

This is a fully remote position, open to applicants in Arizona, +13 more states.

📋 Description

• Oversee and prioritize alerts from a range of security tools.

• Assess alert severity, business impact, affected assets, containment status, and escalation needs.

• Manage security events from initial triage to containment, documentation, resolution, and post-incident review.

• Assist with daily dashboard monitoring, security ticket management, alert quality assessments, and operational reporting.

• Create, refine, and uphold detection logic within security tools.

• Minimize false positives and alert clutter by analyzing recurring detections.

• Support incident response for endpoint, identity, cloud, email, and suspicious activity incidents.

• Facilitate security operations utilizing a variety of Microsoft security tools.

• Develop and sustain security runbooks and knowledge base articles.

⛳️ Requirements

• 3–5 years of experience in SOC operations, security operations, production support, security engineering, or a comparable hands-on cybersecurity position.

• Familiarity with Microsoft security tools such as Microsoft Defender, Microsoft Sentinel, Microsoft Entra ID, Microsoft 365 security, or Azure security services.

• Capability to investigate alerts using SIEM/EDR data, KQL, logs, endpoint telemetry, identity logs, and cloud indicators.

• Experience in incident triage, phishing investigations, malware alerts, suspicious sign-in incidents, endpoint events, and escalation processes.

• Fundamental understanding of cloud security, identity security, MFA, SSO, conditional access, endpoint protection, and vulnerability/cloud exposure management.

• Proficient in writing clear documentation, incident notes, runbooks, ticket updates, and executive summaries.

• Comfortable working within a small team where priorities can shift, requiring support in operations, engineering, documentation, and coordination.

• Excellent communication skills with the ability to collaborate across Slack, Jira, Teams, security tools, managed SOC providers, engineers, and business stakeholders.

🏝️ Benefits

• Health, Dental and Vision Insurance

• Paid Annual Leave

• Paid Sick Leave

• 401K

• Competitive compensation

• Generous STI and LTI provisions

• Remote, flexible working options