Security Engineer II (Security Clearance)- Remote

About The Position

Requirements

• Have 5 years of experience in security operations, detection engineering, threat detection, or incident response
• Have experience with Elastic Security / Kibana or a similar SIEM platform
• Demonstrate experience writing and tuning detections using KQL, EQL, ES|QL, SPL, or similar query languages
• Possess knowledge of common log sources such as authentication, endpoint, network, and cloud audit logs
• Have familiarity with cloud security concepts, especially AWS
• Have an understanding of MITRE ATT&CK, alert triage, and false positive reduction
• Have working knowledge of scripting in Python or Bash

Responsibilities

• Developing, testing, and tuning Kibana Security detection rules, investigating Kibana Security alerts and documenting findings, scope, and recommended actions
• Analyzing telemetry across identity, endpoint, network, and cloud data sources
• Improving alert fidelity through tuning, exception management, and rule lifecycle maintenance
• Mapping detection logic to MITRE ATT&CK and maintaining investigation guidance
• Building dashboards, saved searches, and queries to support investigations and operational visibility
• Partnering with SecOps, IR, IAM, cloud, and infrastructure teams to improve detection coverage and response quality
• Identifying data quality gaps, field mapping issues, and logging deficiencies that affect detection quality
• Utilizing scripting languages like Python, Bash, JavaScript, or PowerShell

Benefits

• opportunities to grow, flourish, and achieve great things
• health
• finances
• family
• time at work
• time pursuing other endeavors
• healthcare
• 401K savings plan
• company holidays
• vacation (in the form of PTO)
• sick time
• family friendly benefits including parental leave
• employee assistance program including a focus on mental and financial wellness