We seek a highly skilled SecOps Engineer to build and operate a modern security program focused on detection, response, cloud security, and continuous threat reduction. This role combines deep technical expertise with proactive security engineering.
Responsibilities
- Build and maintain enterprise detection and response capabilities.
- Design security monitoring, alerting, and incident response processes.
- Lead investigations into security incidents and threats.
- Develop detection rules, threat hunting methodologies, and automation workflows.
- Secure cloud environments across AWS, Azure, and GCP.
- Implement vulnerability management and remediation programs.
- Conduct security assessments and risk analysis.
- Integrate security controls into CI/CD pipelines.
- Partner with engineering teams to improve security posture.
- Build SOAR and automated response capabilities.
Required Qualifications
- 8+ years in Security Operations, Detection Engineering, Blue Team, or Incident Response.
- Deep understanding of modern attack techniques and adversary behavior.
- Strong knowledge of MITRE ATT&CK framework.
- Experience with SIEM platforms (Splunk, Sentinel, Elastic, QRadar).
- Experience with EDR/XDR solutions.
- Cloud security expertise.
- Strong scripting skills (Python, PowerShell, Bash).
- Experience performing incident response and forensic investigations.
Preferred Qualifications
- Detection engineering experience.
- Threat intelligence integration experience.
- Kubernetes and container security expertise.
- Security automation and SOAR experience.
- Relevant certifications (GIAC, CISSP, OSCP, CCSP).
Success Metrics
- Reduced mean time to detect (MTTD).
- Reduced mean time to respond (MTTR).
- Increased detection coverage.
- Faster vulnerability remediation.
- Improved compliance and security posture scores.