Security Engineer (DE & Integration)

Job Description

REQUIREMENTS

• Minimum 6 years of professional experience in security operations or managed services
• Mandatory expertise in Splunk SIEM systems and SPL
• Microsoft Security certifications (e.g., SC-200, SC-300, AZ-500)
• Splunk certifications (Architect or Admin level)
• Practical hands-on experience with EDR (e.g., Carbon Black) and Microsoft Azure
• Strong knowledge of the MITRE ATT&CK framework and threat landscapes
• Experience with vulnerability management solutions like Tenable or MDVM
• Ability to work in a hybrid environment and provide after-hours support when needed

Preferred

• GIAC certifications (GCDA, GCIA, GCIH) or equivalent advanced security credentials
• Experience with Cribl, Vectra, or LogRhythm
• Proficiency in Linux and Windows Operating Systems
• Experience working in a client-facing service delivery function

RESPONSIBILITIES

• Manage and onboard Azure M365 Suite and Microsoft Cloud Security solutions
• Deploy and manage SIEM infrastructure, specifically Splunk and Sentinel
• Deploy and manage Cribl infrastructure (Stream, Edge, and Search)
• Implement and maintain detection capabilities across SIEM and EDR/XDR platforms
• Leverage the MITRE ATT&CK framework to identify opportunities for new content development
• Evaluate existing EDR/SIEM content to improve fidelity and remove outdated rules
• Design, develop, and monitor dashboards and reports for content coverage and alerting
• Collaborate with technology staff to improve logging and correct misconfigurations
• Serve as a primary responder for Managed Security customer systems

Are you interested in this position?

Apply by clicking on the “Apply Now” button below!

#CrossChannelJobs #JobSearch
#CareerOpportunities #HiringNow
#Employment #JobOpenings
#JobSeekers
#FacebookLinkedIn