Lead Security Operations Engineer

About The Position

Requirements

• U.S. citizenship with the ability to maintain a security clearance
• Bachelor’s degree in CS, Cybersecurity, or equivalent technical experience
• Deep hands-on experience with SIEM platforms, security automation, and cloud security (IAM, network security, and cloud-native monitoring)

Nice To Haves

• Preferred certifications such as GIAC (GCIH, GCIA), OSCP, CISSP, or AWS/Azure Security specialties
• Experience with red/purple team exercises, adversary emulation (MITRE ATT&CK), and operating in critical infrastructure or defense environments

Responsibilities

• Lead security operations and detection engineering, including architecting and defending infrastructure within startups in the defense industry.
• Build and automate security monitoring stacks, including SIEM/SOAR platforms (Splunk, Elastic, Sentinel), EDR, and cloud-native security tooling.
• Lead end-to-end incident response, proactive threat hunting, and full-spectrum vulnerability management across AWS, Azure, or GCP environments.
• Perform security orchestration using Python or Bash and implement hardening standards for CI/CD pipelines, container environments (Kubernetes), and edge-deployed systems.
• Align security operations with NIST 800-171 and CMMC frameworks, translating operational metrics into executive-level reporting and strategic guidance.

Benefits

• Competitive salary and high-upside equity package.
• Flexible work hours and hybrid/remote work options.
• Comprehensive medical, dental, and vision benefits.
• The opportunity to build a security organization from the ground up for mission-critical maritime defense technology.