Resident Engineer

About The Position

Requirements

• 10+ years of relevant professional experience in cybersecurity, endpoint protection, or cloud security.
• Hands-on experience as a Security Incident Responder, SOC analyst, or SOC manager.
• Familiarity with AWS, Azure, and GCP cloud platforms and associated use cases.
• Strong networking knowledge (TCP/IP, OSI model) and troubleshooting experience.
• Expertise in log ingestion, Splunk SIEM, XDR deployment, and alert tuning.
• Experience in scripting/automation with Python or PowerShell; knowledge of SQL, XQL, or other query languages preferred.
• Basic Linux administration and troubleshooting skills.
• Excellent communication skills and ability to work independently and collaboratively.
• U.S. citizenship required due to government contract.

Responsibilities

• Provide endpoint protection support, including incident response, threat hunting, and SOC activities.
• Deploy, operationalize, and troubleshoot XDR solutions across AWS, Azure, and GCP.
• Parse, analyze, and monitor logs using Splunk and related tools to detect and respond to threats.
• Develop scripts and automation using Python or PowerShell to enhance operational efficiency.
• Provide technical guidance, enablement, and best practices to customers and internal teams.
• Collaborate with product and engineering teams to act as a subject matter expert (SME) for security solutions.
• Support networking and cloud security troubleshooting, including TCP/IP and OSI model analysis.
• Tune alerts, develop custom BIOCs, correlation rules, and optimize log ingestion for XDR.

Benefits

• Competitive salary range: $135,000 – $145,000.
• Remote and flexible work environment.
• Comprehensive health, dental, and vision insurance.
• Retirement savings plans and company contributions.
• Professional development and continuous learning opportunities.
• Collaborative and supportive team culture focused on growth and performance.