Security Operations Engineer, Associate - Security Operations Engineering

Position Overview

The Blackstone Security Operations – Engineering team is growing to support new cross‑functional security needs. The Associate Security Engineer is responsible for providing Security Information and Event Management (SIEM), automation, and security platform engineering support to assist both new cross‑team engineering projects and day‑to‑day SIEM operations / engineering support. The Associate Security Operations Engineer will also participate in Tier3 security investigations and must have strong working knowledge of incident response procedures and technology.

They need to have hands‑on experience with SIEM technology; experience implementing / managing security platforms used in a SOC environment is a plus. In addition, they will also be tasked to ensure that our assets meet baseline security standards and that we have the visibility and observability across all assets in the estate.

• Designing and customizing complex SIEM search queries, dashboards, and promoting advance searching, forensics, and analytics
• Design and develop SOAR automations to support response and investigation workflows
• Developing and documenting configuration standards, policies, and procedures for operating security / SIEM platforms
• Perform as technical lead in the development and delivery of custom content, system integration, and event reporting
• Leverage infrastructure‑as‑code frameworks to provision and maintain cloud resources (Terraform)
• Design, build, and maintain critical security‑related systems for CI/CD, secrets management, and other core services

• 3+ years in a hands‑on technical role in information security or related field
• 3+ years of infrastructure/software engineering experience with a focus on Cloud technologies
• Experience with cloud native architectures such as AWS, Azure, Office
  365 etc.
• Hands‑on experience with SIEM (e.g. Splunk) for detection and security orchestration and automated response (SOAR)
• Development/scripting experience (Python and/or Power Shell)
• Proven experience with infrastructure‑as‑code frameworks (e.g. Terraform Cloud)
• Proven experience working with git source control and CI/CD systems (Jenkins, Gitlab CICD/Runners)
• Proven experience with multiple security event detection platforms (and orchestrating those to a centralized detection platform)
• Experience with containers and orchestration platforms (Kubernetes, AWS ECS)
• Experience with asset hardening (CIS/STIG)
• Experience with Endpoint Detection and Response systems
• Strong written and oral communication skills; effectively explains technical ideas to non‑technical individuals at any level
• Strong documentation skills and attention to detail
• B.S. in Computer Science or Engineering or similar technical program

Expected annual base salary range: $106,000 – $170,000. Actual base salary within that range will be determined by several components including but not limited to the individual's experience, skills, qualifications and job location. For roles located outside of the US, please disregard the posted salary bands as these roles will follow a separate compensation process based on local market comparables. Additional compensation and benefits offered in connection with the role consist of comprehensive health benefits, including but not limited to medical, dental, vision, and FSA benefits;

paid time off; life insurance; 401(k) plan; and discretionary bonuses. Certain employees may also be eligible for equity and other incentive compensation at Blackstone’s sole discretion.

Blackstone is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, sex, pregnancy, national origin, ancestry, citizenship status, age, marital or partnership status, sexual orientation, gender identity or expression, disability, genetic predisposition, veteran or military status, status as a victim of domestic violence, a sex offense or stalking, or any other class or status in accordance with applicable federal, state, and local laws.

This policy applies to all terms and conditions of employment, including but not limited to hiring, placement, promotion, termination, transfer, leave of absence, compensation, and training. All Blackstone employees, including but not limited to recruiting personnel and hiring managers, are required to abide by this policy.