Senior IT Cyber Security Engineer
Job in
Tampa, Hillsborough County, Florida, 33602, USA
Listed on 2026-05-22
Listing for:
Ashley Furniture
Full Time
position Listed on 2026-05-22
Job specializations:
-
IT/Tech
Cybersecurity, Systems Engineer, Security Manager, Network Security
Job Description & How to Apply Below
Summary
Senior IT Cyber Security Engineer
* The Senior IT Cyber Security Engineer is a technical, hands-on role spanning Security Operations, cloud and on-premises security engineering, detection and response, and security program support.
* Operating within a maturing environment, this individual will own the engineering and operations of SIEM/SOAR platforms while also contributing to the design and implementation of security controls across the enterprise, supporting incident response investigations, and ensuring security best practices are embedded across engineering and infrastructure teams.
* The ideal candidate is as comfortable tuning detection rules and writing automation playbooks as they are reviewing architecture decisions and contributing to policy and compliance frameworks.
Core Responsibilities
* Perform daily security case triage and queue management within a cloud-native SIEM platform, including noise reduction, false positive identification, and exception creation
* Develop and maintain SOAR automation playbooks, including ongoing tuning and deduplication logic
* Monitor and apply SIEM parser updates; review change logs and validate newly introduced data tags to ensure detection integrity
* Standardize and maintain detection rule naming conventions and labeling across the SOC environment
* Review, customize, and manage security playbooks pulled from integrated code repositories; validate code for security concerns prior to deployment
* Perform code scanning and vulnerability validation on playbook and automation code prior to production deployment
* Track and report on playbook usage metrics, log ingestion volumes, and establish consumption baselines to support capacity planning
* Build, maintain, and troubleshoot SOC dashboards and underlying queries; produce recurring operational reports for leadership
* Perform ongoing exception tuning as the environment evolves, including malware, PUP, and endpoint alert validation using Sentinel One EDR/XDR platform data
* Monitor and triage email-based threats using Abnormal Security; manage detection policies, investigate reported messages, and validate remediation actions
* Monitor threat intelligence platforms and dark web monitoring tooling; maintain and update monitoring coverage to address emerging indicators
* Investigate and respond to account compromise indicators, including anonymous sign-in attempts and credential-based threats; execute account remediation actions via enterprise identity management platforms
* Maintain a detection rule tuning feedback loop between SIEM case findings and the broader MSSP detection ruleset
* Manage log forwarder infrastructure, including replacement or migration projects in coordination with IT and vendor support teams
* Coordinate with vendor professional services teams as needed to validate and advance SOC tooling initiatives
* Design, implement, and continuously improve security controls across cloud and on-premises environments to reduce risk and strengthen the overall security posture
* Work closely with engineering and infrastructure teams to embed security best practices into system design, platform deployments, and operational workflows
* Evaluate and recommend security tooling, configurations, and architectural patterns in alignment with enterprise standards and risk tolerance
* Support incident response investigations from initial triage through containment, eradication, and post-incident review
* Help identify gaps in detection coverage and contribute to strengthening detection capabilities based on incident findings and emerging threat intelligence
* Contribute to the development, review, and maintenance of security policies, standards, and procedures
* Support compliance efforts aligned to established frameworks including NIST CSF and PCI-DSS, including evidence collection, gap assessment, and control documentation
Required
Skills & Qualifications
* Strong hands-on experience with cloud-native SIEM and SOAR platforms (e.g., Google Sec Ops / Chronicle, Splunk, Microsoft Sentinel, or equivalent)
* Experience with Sentinel One EDR/XDR for endpoint threat triage, malware validation, alert investigation, and response actions
* Hands-on experience with Abnormal Security or equivalent AI-driven email security platforms for phishing triage, policy management, and threat remediation
* Proficiency writing and optimizing regular expressions for alert tuning, exception logic, and parser development
* Demonstrated experience with detection engineering and rule tuning methodologies in an enterprise SOC environment
* Practical experience designing or implementing security controls across hybrid cloud and on-premises environments
* Ability to collaborate effectively with engineering and infrastructure teams to integrate security…
Position Requirements
10+ Years
work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×