Senior Security Engineer

5 hours, 8 minutes ago
GXA

GXA

GXA is an award-winning IT consulting and managed services provider based in Richardson, Texas. With a focus on empowering businesses in Texas, GXA offers a range of IT solutions including managed IT services, business IT consulting, disaster recovery ...

Internet Software & Services
11-50
Founded 2008

Description

  • Serve as a Tier 3 escalation point for active security incidents, including BEC, AiTM, ransomware, and account compromise.
  • Lead technical analysis during incident response and war room events, including log review, IOC hunting, and lateral movement tracing.
  • Execute containment and eradication actions such as endpoint isolation, session revocation, and credential resets.
  • Coordinate with SOC teams and vendor threat intelligence teams during active investigations and containment efforts.
  • Produce incident timelines, technical findings, and evidence packages for vCISO review and client follow-up.
  • Operate and support the gShield security toolstack, including Huntress, Microsoft Defender for Endpoint, Cyrisma, DNSFilter, and SIEM technologies.
  • Perform alert triage, risk identification, scan issue resolution, and SIEM query, alert, and rule review.
  • Assist with tuning detection logic, scan settings, and platform effectiveness across managed environments.
  • Execute technical remediation items identified through MRMMs, vulnerability reviews, and security recommendations.
  • Support internal security backlog remediation, including POA&M-related work and internal security initiatives.

Requirements

  • 5–7+ years of experience in cybersecurity, security operations, security engineering, or incident response roles.
  • Strong hands-on experience with incident response, threat detection, and security operations workflows.
  • Experience with security platforms such as Microsoft Defender, Huntress, DNSFilter, SIEM solutions, vulnerability management tools, and endpoint security technologies.
  • Ability to investigate security alerts, analyze logs, trace attacker activity, and support containment and remediation.
  • Familiarity with common attack types including phishing, BEC, account compromise, ransomware, and identity-based attacks.
  • Experience supporting security controls in Microsoft 365 and endpoint environments.
  • Strong documentation skills and ability to write clear technical procedures and findings.
  • Ability to work calmly and methodically during active incidents and escalations.
  • Experience in an MSP, MSSP, or multi-client environment is preferred.
  • Security certifications such as Security+, CySA+, SC-200, SC-300, AZ-500, GCIH, GCIA, or similar are a plus.
  • Applicants must include a link to a 1–2 minute video introduction in their cover letter, unless a reasonable accommodation is requested.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Lead Security Governance & Risk Engineer

Klaviyo 1K-5K IT Services

Klaviyo is hiring a Lead Security Governance & Risk Engineer to own security governance and risk engineering work that turns policies into automated, measured, and continuously monitored risk decisions across technology, third-party, and AI risk domains.

AWS HIPAA Kubernetes Microservices Python SQL Tableau
3 hours, 53 minutes ago

Senior Security Engineer I – Customer Trust (Remote Eligible)

Smartsheet 1K-5K Internet Software & Services

Smartsheet is hiring a Sr. Security Engineer I to lead US customer trust operations by managing security assessment responses, supporting enterprise customer engagements, and strengthening confidence in the company’s security posture.

AWS Azure Encryption GCP HIPAA
4 hours, 8 minutes ago

Engineering Manager - Cloud & Security (m/f/x)

FINN 251-1K Consumer Services

FINN is hiring an Engineering Manager to lead its Tooling & Security team in building and improving internal tooling, cloud governance, and security operations that help the company work efficiently and securely.

AWS GCP Go Python Serverless TypeScript
5 hours, 23 minutes ago

Manager of Identity Access Management

Hasbro 5K-10K Consumer Goods

Wizards of the Coast is seeking a Manager, Identity Platform Engineering to lead the enterprise identity systems that secure access across its internal studios and multi-cloud environment.

Active Directory AWS OpenID Connect SAML
1 day, 4 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers