Security Engineer
About The Position
Weâre looking for a Security Engineer whoâs excited to work across the full security stack. Youâll help us stand up and mature key capabilitiesâincluding Vulnerability Management, Endpoint Security, SIEM/SOAR, Application Security, Incident Response, GRC, and Network Security. This is a handsâon role: youâll manage tools, build dashboards and automations, tune policies, and dive into investigations. If youâre curious, collaborative, and love turning signal into action, we want to meet you. The ideal candidate will have 2-4 years of working experience.
Requirements
- 2â3 years in security/IT/DevOps or equivalent projects/certs.
- Solid fundamentals: OS internals (Windows/Linux/macOS), networking (TCP/IP, DNS, DHCP), identity, and cloud.
- Familiarity with two or more: EDR, SIEM, SOAR, SAST/DAST, CNAPP, CSPM, Incident Response, GRC, or vuln management.
- Comfort building queries/dashboards and writing clear documentation.
Nice To Haves
- Azure experience
- IaC experience â Terraform and Ansible
- Experience with tools like: SentinelOne/CrowdStrike/Microsoft Defender for Endpoint; Tenable/Qualys/Rapid7; Microsoft Sentinel/Splunk; Logic Apps/Tines; CodeQL/Semgrep/OWASP ZAP; Trivy/Grype; GitHub/GitHub AS.
- Certifications such as Security+, CySA+, SCâ200, AZâ500, or GSEC.
- Understanding of Security Frameworks like NIST800.53r5 and CIS
Responsibilities
- Operate and administer the vulnerability management platform (e.g., Tenable/Qualys/Rapid7).
- Build dashboards and recurring reports (trending, SLAs, riskâbased prioritization).
- Partner with IT/Engineering to align patching cycles with findings and verify remediation.
- Deploy, monitor, and tune EDR on Windows, macOS, and Linux across physical and cloudâhosted workloads.
- Harden policies and create exceptions safely; investigate and resolve sensor/telemetry issues.
- Maintain coverage/health reporting and onboarding/offboarding procedures.
- Ensure all relevant log sources (cloud, identity, endpoint, network, application) are ingesting and parsing correctly.
- Write detections/queries and build SOAR playbooks to enrich alerts, automate triage, and reduce MTTR.
- Create runbooks for repeatable investigations.
- Help run SAST/DAST pipelines; support developers in âshiftâleftâ practices.
- Scan containers/images and thirdâparty packages from npm, pip, and Homebrew; manage findings in backlog.
- Contribute to secure SDLC guidance and threat modeling for new features.
- Act as an escalation partner to our managed SOC; assist with scoping, containment, eradication, and recovery.
- Preserve evidence, draft timelines, and document postâincident followâups.
- Apply Zero Trust principles in policy design and access tooling.
- Support DNS/DHCP hygiene and network segmentation efforts across cloud and campus.
- Support logs/detections and guardrails in Azure (e.g., Microsoft Sentinel/Defender, Azure AD/Entra, Policy).
- Help design leastâprivilege access, workload protections, and secure configurations.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
Education Level
No Education Listed
Number of Employees
51-100 employees
