RemoteLeaf Logo
Log in Sign up

Senior Security Engineer, Security Incident Response Team (SIRT)

1 day ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
AWS Git GitLab Machine Learning Python SIEM
Apply Now
GitLab

GitLab

GitLab: The comprehensive DevOps platform revolutionizing software development with automation, AI workflows, and essential tools for efficient collaboration.

Internet Software & Services
1K-5K
Founded 2014
View All Jobs 210

Description

  • Lead and coordinate end-to-end incident response for high-severity security events in a 24/7 global on-call model.
  • Investigate complex security incidents across cloud environments using Digital Forensics and Incident Response methodologies.
  • Prepare clear executive communications to keep stakeholders informed during incidents.
  • Partner with Signals Engineering to design and implement detection capabilities, including SIEM use cases, alerting strategies, and telemetry pipelines.
  • Build and enhance automation and AI-assisted workflows to improve triage, investigation speed, and response consistency.
  • Partner with Threat Intelligence to contextualize threats and improve detection coverage.
  • Conduct root cause analysis and lead post-incident reviews to drive continuous improvement and risk reduction.
  • Develop and maintain runbooks, playbooks, and operational documentation.
  • Collaborate cross-functionally with Engineering, Infrastructure, Legal, Product, and Communications during incidents and proactive exercises.
  • Mentor other engineers and help improve the team’s incident response maturity.

Requirements

  • Strong experience in security incident response and investigations in cloud-first environments.
  • Experience using or administering Git/GitLab in a security or engineering context.
  • Hands-on experience with SIEM, EDR, and/or detection engineering.
  • Experience with cloud platforms such as AWS and GCP.
  • Familiarity with threat intelligence and adversary tactics such as MITRE ATT&CK.
  • Experience building or working with automation tools such as Python, scripting, or SOAR platforms.
  • Interest or experience applying AI/ML or data-driven techniques to detection, triage, or response workflows.
  • Strong analytical and problem-solving skills, with the ability to operate effectively during high-severity incidents.
  • Excellent written communication skills and a commitment to clear, actionable documentation.
  • United States citizenship is required due to government requirements.
  • Residency within the United States is required, and the role supports GitLab’s FedRAMP environment.

Benefits

  • Base salary range of $139,200 to $218,400 USD for the listed level.
  • Benefits to support health, finances, and well-being.
  • Flexible Paid Time Off.
  • Equity compensation and an Employee Stock Purchase Plan.
  • Growth and Development Fund.
  • Parental leave.
  • Home office support.
  • Team Member Resource Groups.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

JMA Wireless

IT Infrastructure Security Operations Engineer

JMA Wireless 251-1K Wireless Telecommunication Services

JMA is hiring an IT Infrastructure Security Operations Engineer in Syracuse, NY to own the day-to-day security posture of its enterprise infrastructure and keep Windows and Linux environments continuously hardened and audit-ready.

United States Full-time Senior Security Engineer
$100k-$120k
Active Directory Ansible Bash Linux PowerShell Puppet Python SIEM
1 hour, 2 minutes ago
Aledade

Sr. SOC Security Engineer II

Aledade 1K-5K Health Care Providers & Services

Aledade is hiring a Senior SOC Security Engineer II to lead security monitoring, incident response, and threat detection efforts across its cloud and SOC environment.

United States Full-time Senior Security Engineer
AWS Azure PowerShell Python SIEM
2 hours, 45 minutes ago
OSINT Combine

Senior Office 365 Infrastructure & Security Operations Engineer

OSINT Combine 11-50 Diversified Consumer Services

A Senior Office 365 Infrastructure & Security Operations Engineer at an intelligence software company will support and scale the cloud, internal IT, and security operations behind mission-critical platforms used by government and security customers.

Australia Full-time Senior Security Engineer Systems Engineer
AWS Bash CI/CD Linux macOS PowerShell Python
3 hours, 17 minutes ago
Triple

Director of Information Security

Triple 11-50 Internet Software & Services

Triple is hiring a Director of Information Security to lead and execute the company’s security program as it scales its banking operations and AI-driven dispute management platform.

United Kingdom Portugal Belgium Spain France Germany Full-time Executive Security Engineer
Cybersecurity Go JavaScript Python
3 hours, 17 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers