Sr. SOC Security Engineer II

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Security, or related field.
• Minimum of 7+ years of hands-on experience in cybersecurity, with a strong focus on SOC engineering, threat detection, and incident response.
• Expertise in managing and optimizing SIEM platforms (e.g.,Sumo Logic), EDR tools, IDS/IPS, and firewalls. Deep knowledge of networking, security protocols, and cloud platforms (AWS, Azure).
• Hands-on experience in threat intelligence, threat hunting, and advanced log analysis for incident detection and response.
• Understanding of security frameworks and methodologies, such as MITRE ATT&CK, NIST, ISO 27001, or CIS Controls.
• Familiarity with cloud security tools and techniques for monitoring and securing workloads in AWS, Azure, or GCP environments.

Nice To Haves

• In-depth knowledge of security operations, including SIEM, EDR, IDS/IPS, malware analysis, and vulnerability management tools.
• Experience working with cloud security technologies (AWS, Azure, GCP), including monitoring, logging, and incident response in cloud environments.
• Experience in developing and deploying automation scripts (e.g., Python, PowerShell) to perform routine tasks such as log analysis, threat detection, and incident response.
• Act as the technical lead in investigating, analyzing, and responding to complex security incidents and remediation efforts.
• Experience in evaluating new security technologies and making recommendations to enhance the organization’s defensive capabilities.
• Hands-on experience in malware analysis, reverse engineering, and digital forensics.
• Experience in advanced log and network traffic analysis to identify security incidents, trends, and anomalous behaviors.
• Certifications such as CISSP, GCIH, GCIA, CEH, OSCP, or GIAC are preferred.

Responsibilities

• Engineer and implement security solutions that enhance the SOC’s ability to prevent, detect, and respond to security incidents across cloud environments (AWS, GCP and Azure).
• Lead investigations into complex security incidents, perform root cause analysis, and proactively hunt for threats using tools like MITRE ATT&CK framework.
• Develop and maintain detailed incident response playbooks and procedures, ensuring alignment with industry best practices.
• Provide expert analysis of security events, correlating data from various sources (network, endpoint, application) to gain a holistic view of potential threats.
• Assist in containment and remediation strategies for cyber incidents, coordinating with internal teams to ensure swift resolution.
• Mentor and provide guidance to junior SOC engineers and analysts, helping them develop their technical skills and grow in their roles.

Benefits

• Flexible work schedules and the ability to work remotely are available for many roles
• Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
• Robust time-off plan (21 days of PTO in your first year)
• Two paid volunteer days and 11 paid holidays
• 12 weeks paid parental leave for all new parents
• Six weeks paid sabbatical after six years of service
• Educational Assistant Program and Clinical Employee Reimbursement Program
• 401(k) with up to 4% match
• Stock options