This is a fully remote position, open to applicants in United States.

• Design, implement, and continuously enhance detection rules across SIEM, EDR, and cloud security platforms.

• Create automated response playbooks to minimize mean time to detect (MTTD) and mean time to respond (MTTR).

• Utilize GenAI tools to expedite log analysis and threat triage.

• Summarize and enrich security alerts and incident information.

• Generate detection logic, including Sigma rules, queries, and scripts.

• Support root cause analysis and investigation processes.

• Integrate GenAI into SOC workflows through APIs and internal tools.

• Improve detection pipelines using AI-assisted enrichment and correlation techniques.

• Analyze logs across endpoints, cloud environments, SaaS platforms, and networks.

• 3–7+ years of experience in Security Engineering, Detection Engineering, or Incident Response.

• Practical experience with SIEM tools (e.g., Splunk, Datadog, Sentinel) and/or EDR platforms.

• Strong grasp of security fundamentals, including networking, operating systems, cloud security, and identity management.

• Experience in scripting or programming, with a preference for Python.

• Demonstrated experience utilizing GenAI tools (e.g., Claude, Cursor, ChatGPT) within security workflows.

• Health and dental insurance.

• Paid time off.

• Life insurance coverage.

• Disability insurance.

• 401(k) matching program.

• Comprehensive onboarding process.

• Ongoing training opportunities.

• Mentorship programs.

• Career development paths.

Senior Security Operations Engineer

People also viewed