Senior Security Engineer

Job Summary

We are seeking a Senior Security Engineer. This is a high‑impact role for a “builder” and a technical leader. You will not only execute advanced security tasks but also serve as a force multiplier by using automation to reduce operational toil and foster efficiency. You will lead a team of analysts through technical mentorship, collaborating with cross‑functional teams to protect our infrastructure.

While this is a senior individual contributor role, it offers the opportunity to grow into a management position based on demonstrated leadership qualities.

• SOC Leadership: Oversee day‑to‑day SOC activities – monitoring alerts, triaging incidents, and coordinating escalations while acting as the primary point of contact during EST business hours.
• Automation & Efficiency: Identify repetitive operational tasks and architect automated solutions using Python, Bash, or Power Shell. Build custom integrations between security tools to ensure seamless data flow that supports 24/7 global operations.
• Incident Response: Own the incident response lifecycle: detection, containment, investigation, remediation, and lessons learned, managing independent execution during US hours and coordinating handovers.
• Mentorship: Provide mentorship and career development opportunities to junior staff, utilizing a mix of synchronous sessions during overlap windows and asynchronous methods like video walkthroughs and ticket reviews ensuring expertise in areas like cloud security and incident response.
• Cloud Security & Dev Ops: Work closely with infrastructure and Dev Ops teams to secure cloud deployments (e.g., containers, CI/CD pipelines). Advocate for secure coding practices and automated security testing.
• Vulnerability Management: Oversee vulnerability management programs – from scanning and assessment through remediation tracking and reporting.
• Continuous Improvement: Drive continuous improvements in processes and procedures, including the standardization of global handoff protocols and operational runbooks for remote and hybrid teams.

• Security Engineering & Automation: Systematically reducing manual “toil” by scripting workflows, integrating APIs, and deploying orchestration to accelerate detection and response across the global security stack.
• SOC Operations: Providing 24/7 vigilance through continuous monitoring, alert triage, and systematic tuning of the security stack to eliminate blind spots and ensure seamless coverage.
• Vulnerability Management: Reducing the attack surface through continuous asset discovery, risk‑based scanning, and coordinated remediation of security flaws.
• Incident Response: Minimizing business impact by maintaining rapid forensic investigation, containment, and recovery capabilities.
• Offensive Security: Validating defense effectiveness by simulating real‑world attacks through rigorous penetration testing and red‑team exercises.
• Threat Intelligence: Driving proactive defense by analyzing global threat trends and OSINT to anticipate and neutralize targeted attack campaigns.
• Insider Threat Management: Detecting and preventing internal risks through behavioral analytics and strategic data loss prevention protocols.

• Experience: 5–7+ years of combined IT and security experience in Security Operations in a lead capacity.
• Technical Expertise: Deep understanding of threat detection, vulnerability management, incident response, and enterprise security controls.
• Automation: Proven ability to write scripts (Python, Power Shell, Bash) and automate security workflows to improve efficiency.
• Security Stack: Familiarity with SIEM, EDR, NDR, WAF, and DLP technologies.
• Infrastructure: Familiarity with modern infrastructure (cloud platforms, containerization, CI/CD pipelines).
• Soft Skills: Excellent communication skills – able to manage and mentor team members across varying shifts and convey complex concepts to both technical and non‑technical stakeholders.
• Education: Bachelor’s degree in Computer Science, Information Systems, or related field preferred (or equivalent experience).
• Certifications: Relevant security certifications (e.g., CISSP, GIAC, CISM,…