Senior Security Engineer

4 weeks, 1 day ago
Contract
Senior
Cybersecurity
GXA

GXA

GXA is an award-winning IT consulting and managed services provider based in Richardson, Texas. With a focus on empowering businesses in Texas, GXA offers a range of IT solutions including managed IT services, business IT consulting, disaster recovery ...

Internet Software & Services
11-50
Founded 2008

Description

  • Serve as a Tier 3 escalation point for active security incidents such as BEC, AiTM, ransomware, and account compromise.
  • Lead technical incident response activities, including log review, IOC hunting, lateral movement tracing, and war room support.
  • Execute containment and eradication actions such as endpoint isolation, session revocation, and credential resets.
  • Coordinate with SOC teams and vendor threat intelligence teams during active investigations and containment efforts.
  • Produce incident timelines, technical findings, and evidence packages for internal review and client follow-up.
  • Operate and support the gShield security toolstack, including Huntress, Microsoft Defender for Endpoint, Cyrisma, DNSFilter, SIEM, and related tools.
  • Perform alert triage, risk identification, scan issue resolution, and follow-through on issues surfaced by security tools.
  • Support SIEM operations including query development, alert review, and rule tuning.
  • Execute technical remediation items from MRMMs, preventative actions, vulnerability reviews, and security recommendations.
  • Write and maintain SOPs, runbooks, detection playbooks, and response procedures for gShield operations and incident response.

Requirements

  • 5–7+ years of experience in cybersecurity, security operations, security engineering, or incident response roles.
  • Strong hands-on experience with incident response, threat detection, and security operations workflows.
  • Experience with security platforms such as Microsoft Defender, Huntress, DNSFilter, SIEM solutions, vulnerability management tools, and endpoint security technologies.
  • Ability to investigate security alerts, analyze logs, trace attacker activity, and support containment and remediation.
  • Familiarity with common attack types including phishing, BEC, account compromise, ransomware, and identity-based attacks.
  • Experience supporting security controls in Microsoft 365 and endpoint environments.
  • Strong documentation skills and ability to write clear technical procedures and findings.
  • Ability to work calmly and methodically during active incidents and escalations.
  • Strong collaboration and communication skills with internal teams and leadership stakeholders.
  • Preferred experience in an MSP, MSSP, or multi-client environment.
  • Familiarity with Intune, Microsoft Defender, AppLocker, ThreatLocker, and RMM-based scripting or automation.
  • Understanding of CIS benchmarks, security hardening standards, and configuration drift monitoring.
  • Experience supporting vulnerability remediation and technical aspects of vCISO or managed security programs.
  • Security certifications such as Security+, CySA+, SC-200, SC-300, AZ-500, GCIH, GCIA, or similar are a plus.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Lead Security Governance & Risk Engineer

Klaviyo 1K-5K IT Services

Klaviyo is hiring a Lead Security Governance & Risk Engineer to own security governance and risk engineering work that turns policies into automated, measured, and continuously monitored risk decisions across technology, third-party, and AI risk domains.

AWS HIPAA Kubernetes Microservices Python SQL Tableau
4 hours, 48 minutes ago

Senior Security Engineer I – Customer Trust (Remote Eligible)

Smartsheet 1K-5K Internet Software & Services

Smartsheet is hiring a Sr. Security Engineer I to lead US customer trust operations by managing security assessment responses, supporting enterprise customer engagements, and strengthening confidence in the company’s security posture.

AWS Azure Encryption GCP HIPAA
5 hours, 3 minutes ago

Engineering Manager - Cloud & Security (m/f/x)

FINN 251-1K Consumer Services

FINN is hiring an Engineering Manager to lead its Tooling & Security team in building and improving internal tooling, cloud governance, and security operations that help the company work efficiently and securely.

AWS GCP Go Python Serverless TypeScript
6 hours, 18 minutes ago

Manager of Identity Access Management

Hasbro 5K-10K Consumer Goods

Wizards of the Coast is seeking a Manager, Identity Platform Engineering to lead the enterprise identity systems that secure access across its internal studios and multi-cloud environment.

Active Directory AWS OpenID Connect SAML
1 day, 5 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers