RemoteLeaf Logo
Log in Sign up

Senior Security Operations Engineer

56 minutes ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS Azure Bash GCP Node.js OAuth OpenID Connect Python Ruby SAML SIEM
Apply Now
Cribl

Cribl

Cribl provides a unified data management platform specifically designed for IT and security data, enabling users to explore, collect, process, and access their data at scale while offering enhanced control and flexibility in managing their data workflows.

IT Services
251-1K
Founded 2018
$402M raised
View All Jobs 53

Description

  • Lead security incident management, triage, investigations, and response efforts.
  • Design, implement, and optimize detection logic to identify sophisticated threats across the environment.
  • Monitor security events and alerts using MSSP, SIEM, AI, and CSPM tooling to identify and triage potential threats.
  • Develop and maintain high-fidelity detection rules and alerts across SIEM and other security platforms.
  • Tune and improve detection logic to reduce false positives and increase detection effectiveness.
  • Act as the security incident response lead during investigations and use detection capabilities to support response efforts.
  • Build, enhance, and manage security playbooks using detection engineering best practices.
  • Conduct security assessments through vulnerability testing, threat hunts, and purple team exercises to identify gaps.
  • Perform internal and external security reviews of corporate assets, including the corporate website and enterprise applications.
  • Lead security incident response tabletop exercises and collaborate with product security, IT, legal, and threat intelligence teams.

Requirements

  • Experience with modern security principles such as security data lakes, detections as code, EDR, zero trust networking, and related security tooling.
  • Demonstrated experience with incident response and incident management.
  • Strong understanding of attack frameworks such as MITRE ATT&CK and mapping detections to TTPs.
  • Understanding of authentication and authorization schemes such as SAML, OpenID, OAuth2, and SCIM.
  • Experience scripting or coding in at least one language such as Python, NodeJS, Ruby, or Bash.
  • Ability to communicate ideas to both technical and non-technical audiences.
  • Comfort working with ambiguity, strong analytical ability, self-motivation, and cross-functional collaboration skills.
  • Occasional availability to work outside standard hours across multiple time zones.
  • Experience with SIEM platforms like Panther and their detection capabilities is a plus.
  • Familiarity with Wiz and cloud-native security tooling for AWS, Azure, or GCP is preferred.
  • Relevant certifications in cloud security or incident response, such as SANS GIAC certifications, are preferred.
  • Proven experience developing, deploying, and maintaining detection rules such as Sigma, YARA, Splunk SPL, or KQL across security platforms.

Benefits

  • Salary range of $128,000 to $200,000, depending on location and experience.
  • Health, dental, vision, short-term disability, and life insurance.
  • Paid holidays and paid time off.
  • Fertility treatment benefit.
  • 401(k) retirement plan.
  • Equity in the company.
  • Eligibility for a discretionary company-wide bonus.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Figma

Security Engineer

Figma 1K-5K Internet Software & Services

Figma is hiring a remote-first Security Engineer to drive systemic security improvements across its product, platform, and internal systems on teams focused on AI Security, Platform Security, Product Security, and Anti-Abuse.

United States Full-time Senior Security Engineer
$153k-$376k
Figma Penetration Testing
0 minutes ago
Pinterest

Security Software Engineer II, Internal Identity & Access Management

Pinterest 5K-10K Internet Software & Services

Pinterest is hiring a software engineer for its Internal Identity & Access Management team to help build and secure the infrastructure that governs identity, authentication, and authorization across production systems.

United States Full-time Junior Security Engineer Software Engineer
$124k-$255k
AWS C++ Envoy Go Kubernetes OAuth Puppet Python React SAML Terraform TypeScript
45 minutes ago
Precision For Medicine

Microsoft 365 Governance Administrator

Precision For Medicine 1K-5K Pharmaceuticals

Precision for Medicine is hiring a Microsoft 365 Governance Administrator to modernize and govern its enterprise collaboration environment across SharePoint, Teams, OneDrive, and the Power Platform.

Spain Full-time Senior Security Engineer
Power BI PowerShell
1 hour ago
Alphasense

Information Engineer II, Enterprise Systems Technology

Alphasense 51-250 Industrial Conglomerates

AlphaSense is hiring an Engineer II, Enterprise Systems Technology to design, build, and operate secure, scalable enterprise platforms and identity services that support internal teams and improve operational efficiency.

India Mid Level Infrastructure Engineer Security Engineer
AWS Bash CI/CD Cloudflare CrowdStrike Git JSON LLM OAuth PowerShell Python REST API SQL Terraform YAML
1 hour, 21 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers