Security Operations Engineer, Associate - Security Operations Engineering
About The Position
The Blackstone Security Operations – Engineering team is growing to support new cross-functional security needs. The Associate Security Engineer is responsible for providing Security Information and Event Management (SIEM), automation, and security platform engineering support to assist both new cross-team engineering projects and day-to-day SIEM operations / engineering support. The Associate Security Operations Engineer will also participate in Tier 3 security investigations and must have strong working knowledge of incident response procedures and technology. They need to have hands-on experience with SIEM technology; experience implementing / managing security platforms used in a SOC environment is a plus. In addition, they will also be tasked to ensure that our assets meet baseline security standards and that we have the visibility and observability across all assets in the estate.
Requirements
- 3+ years in a hands-on technical role in information security or related field
- 3+ years of infrastructure/software engineering experience with a focus on Cloud technologies
- Experience with cloud native architectures such as AWS, Azure, Office 365 etc.
- Hands-on experience with SIEM (e.g. Splunk) for detection and security orchestration and automated response (SOAR)
- Development/scripting experience (Python and/or PowerShell)
- Proven experience with infrastructure-as-code frameworks (e.g. Terraform Cloud)
- Proven experience working with git source control and CI/CD systems (Jenkins, Gitlab CICD/Runners)
- Proven experience with multiple security event detection platforms (and orchestrating those to a centralized detection platform).
- Experience with containers and orchestration platforms (Kubernetes, AWS ECS)
- Experience with asset hardening (CIS/STIG)
- Experience with Endpoint Detection and Response systems
- Strong written and oral communication skills; effectively explains technical ideas to non-technical individuals at any level
- Strong documentation skills and attention to detail
- B.S. in Computer Science or Engineering or similar technical program
Responsibilities
- Designing and customizing complex SIEM search queries, dashboards, and promoting advance searching, forensics, and analytics
- Design and develop SOAR automations to support response and investigation workflows
- Developing and documenting configuration standards, policies, and procedures for operating security / SIEM platforms
- Perform as technical lead in the development and delivery of custom content, system integration, and event reporting
- Leverage infrastructure-as-code frameworks to provision and maintain cloud resources (Terraform)
- Design, build, and maintain critical security-related systems for CI/CD, secrets management, and other core services
Benefits
- comprehensive health benefits, including but not limited to medical, dental, vision, and FSA benefits
- paid time off
- life insurance
- 401(k) plan
- discretionary bonuses
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
