Security Operations Engineer II

This is a fully remote position, open to applicants in India.

📋 Description

• Operate and fine-tune enterprise security tools (EDR, SIEM/SOAR, WAF/proxy, email security).

• Oversee proxy filtering policies, exceptions, SSL inspection, and troubleshoot performance issues.

• Develop automation solutions and playbooks (Python/PowerShell, SOAR, APIs) to enhance SecOps efficiency.

• Establish CI/CD pipelines and Infrastructure-as-Code workflows to ensure consistent and auditable security configuration changes.

• Create and refine detection rules; enhance signal quality and minimize false positives.

• Maintain and create health dashboards, uptime/coverage metrics, and change governance documentation.

• Facilitate knowledge transfer through runbooks, how-to guides, tabletop exercises, and lunch & learn training sessions.

• Manage upgrade schedules, ensure license compliance, maintain configuration baselines, and oversee key/secret rotations.

• Administer URL/category policies, SSL inspection, identity-aware policies, geo/risk-based controls, and troubleshoot performance issues.

• Analyze block events for false positives; assess impact; retire exceptions as scheduled and report residual risk.

• Build and sustain an automation backlog in collaboration with SecOps, focusing on high-frequency, high-toil tasks.

• Provide on-call support for tooling availability and ingestion/normalization challenges.

• Report on key metrics (uptime, coverage, MTTR, lead time, change success rate, exception aging).

• Keep documentation, diagrams, and asset inventories up to date.

• Monitor and respond to alerts generated by various toolsets as part of a continuous 24/7 Security Operations Center.

• Report outages or incidents according to established guidelines and procedures.

• Detect, analyze, and respond to incidents, coordinating with other stakeholders to contain, eradicate, and recover from incidents.

• Assist in developing testing criteria for new signatures/rules implementation.

• Participate in on-call rotations, including nights, weekends, and holidays.

⛳️ Requirements

• Bachelor’s degree in computer science, Information Systems, Data Science, or a closely related field, or equivalent experience.

• At least 2 years of experience in cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), operations incident response, network security, or security engineering.

• Basic experience in administering, deploying, and managing security tools.

• Basic experience in operating WAF/proxy and SIEM/SOAR.

• Proficient in scripting with Python and/or PowerShell and building API integrations; familiarity with JSON/YAML.

• Experience with CI/CD and Git workflows; Infrastructure-as-Code for security configurations.

• Basic understanding of TLS/SSL, HTTP, identity-aware policies, and egress/ingress routing.

• Documentation discipline and change management knowledge (ITIL basics).

• Ability to create formal and informal reports, briefings, and analysis of security controls.

• Experience with Endpoint Detection and Response (EDR) or Intrusion Detection System or Intrusion Prevention System (IDS/IPS) monitoring tools.

• Understanding of the MITRE ATT&CK Framework and Cyber Kill Chain.

• Familiarity with incident response processes and risk management.

• Preferred: Possession of one or more of the following certifications: GSEC, GCIA/GCED, GCDA, AZ-500, SC-200/SC-100, Network+, or CCNA.

🏝️ Benefits

• Performance bonus

• Allowances

• Employer-paid insurance benefits

• Flexible work options including work from home, on-site, and hybrid positions

• Company-provided technology packages for all Team Members

• Collaborative atmosphere filled with forward-thinking Team Members

• Extensive growth opportunities

• Ongoing business training and career development opportunities

• Competitive market-based salary with bonus compensation

• Quarterly profit sharing and annual merit bonuses

• Generous PTO and holidays, totaling 28.5 days during the first full year of employment

• Excellent benefits package that includes 401(K) match, adoption assistance, parental leave, tuition reimbursement, comprehensive medical/dental/vision, and many nonstandard benefits