Security Solution Engineer — SIEM/SOAR

About The Position

Requirements

• 3+ years in detection engineering, content engineering, or security operations
• Strong proficiency in SIEM detection rule development — YARA-L for Google SecOps, KQL for Sentinel, or similar
• Experience building and maintaining SOAR playbooks and automation workflows
• Proficiency with log parser development for diverse data source types
• Knowledge of MITRE ATT&CK framework and its application to detection content
• Experience with Python, cloud run functions, and REST API integrations
• Experience building security dashboards for operational use cases
• Understanding of threat intelligence and how TTPs translate into actionable detection logic
• Strong problem-solving and troubleshooting skills with a bias toward action
• Excellent customer-facing communication and collaboration abilities
• Ability to thrive in a fast-paced, high-performance startup environment
• Passion for cybersecurity, automation, and continuous improvement
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related field (or equivalent practical experience)

Nice To Haves

• Relevant certifications such as CISSP, CISM, GIAC certifications, Google Cloud Professional, Microsoft SC-200/AZ-500, or AWS Certified Solutions Architect are a plus

Responsibilities

• Author, tune, and maintain detection rules, correlation logic, and threat content across Google SecOps and Microsoft Sentinel
• Build and validate log parsers for new data sources integrated into customer environments
• Develop and maintain SOAR playbooks, automation workflows, and dashboards for common alert types and operational use cases
• Build cloud run functions, scripts, and API integrations where native connectors or content do not exist
• Collaborate with Deployment Engineers to ensure content is ready for new customer go-lives
• Monitor detection coverage gaps and proactively develop content to address them
• Incorporate threat intelligence and adversary TTPs (MITRE ATT&CK) into detection logic
• Serve as an advanced enablement resource for customers — training them on detection content, dashboards, and platform capabilities at a deeper technical level
• Document all content with clear metadata, use cases, and tuning notes
• Support AI-assisted content generation workflows with human review as the quality gate

Benefits

• Competitive salary and benefits package
• A culture of growth and development, with opportunities to expand your expertise in AI, cybersecurity, and engineering