RemoteLeaf Logo
Log in Sign up

Senior Security Operations Engineer

13 hours, 29 minutes ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS CrowdStrike PowerShell Python Sentinel SIEM Splunk SQL
Apply Now
Included Health

Included Health

Included Health is a healthcare company that provides cost-saving solutions for employers and health plans. They offer virtual care and navigation services, connecting millions with board-certified doctors and specialists for comprehensive and convenie...

Insurance
1K-5K
$106M raised
View All Jobs 28

Description

  • Lead investigation, containment, remediation, and root cause analysis for DLP and data security incidents, including suspected data exfiltration or improper data handling.
  • Own deployment, configuration, and continuous tuning of DLP controls across endpoints, network egress, SaaS applications, and cloud storage.
  • Develop and maintain DLP policies, rules, and data classifications that balance security, usability, and regulatory/client requirements.
  • Build and refine automated response playbooks and workflows to enrich, triage, and respond to DLP alerts.
  • Proactively hunt for anomalous data movement using DLP telemetry, EDR, SIEM, and identity signals.
  • Partner with Security Engineering, IT, Legal, Privacy, Compliance, and business stakeholders on secure data-handling patterns and exception processes.
  • Contribute to broader incident response efforts involving data exposure or regulatory impact, including evidence handling and stakeholder communication.
  • Define and track DLP metrics such as coverage, detection quality, MTTD/MTTR, and false positive rate, and report progress to leadership.

Requirements

  • 5+ years of hands-on experience in security operations, incident response, or security engineering with a strong emphasis on data protection and DLP.
  • Direct hands-on experience deploying, tuning, and operating DLP tools in a production environment across endpoint, network, SaaS, and/or cloud.
  • Experience implementing and operating Cloud Access Security Broker (CASB) or similar SaaS security controls.
  • Deep experience integrating DLP signals into SIEM/SOAR workflows, such as CrowdStrike, Splunk, or Sentinel.
  • Advanced scripting and automation skills using Python, PowerShell, KQL, or SQL to enrich, tune, and report on DLP/IR telemetry at scale.
  • Proven experience with EDR platforms such as CrowdStrike or SentinelOne for investigating and containing data-focused incidents.
  • Strong experience with cloud data protection in AWS, including identifying and remediating misconfigurations and using native security services such as GuardDuty and Security Hub, along with CSPM tooling.
  • Experience designing and maintaining data classification and policy frameworks for PHI, PII, PCI, and other sensitive data types.
  • Experience working with leadership, employees, and cross-functional partners in an appropriate manner.
  • Preferred or additional consideration may be given based on education, training, certifications, licensure, and related job-related factors.

Benefits

  • Remote-first culture.
  • Competitive base salary with equity and benefits, with zone-based salary ranges from $138,380 to $254,111 depending on location.
  • 401(k) savings plan through Fidelity.
  • Comprehensive medical, vision, and dental coverage, including disability insurance.
  • Free telemedicine and health care navigation services for employees and dependents.
  • Generous Paid Time Off (PTO) and Discretionary Time Off (DTO).
  • 12 weeks of 100% paid parental leave, plus fertility and family-building support.
  • Work-from-home reimbursement and 24 hours of paid volunteer time off per year.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Aledade

Senior Security Engineer II (Engineering & Tooling), Remote

Aledade 1K-5K Health Care Providers & Services

Aledade is hiring a Senior Security Engineer II to design and operate security tooling and infrastructure protections for a remote, cloud-focused environment supporting its healthcare platform.

United States Full-time Senior Security Engineer
Ansible Argo CD AWS Azure Bash Buildkite Chef CrowdStrike Cybersecurity Datadog DevSecOps Docker GCP Helm HIPAA Jenkins Kubernetes Network Security PowerShell Python SIEM Splunk Terraform
45 minutes ago
Binance

Blockchain Security Engineer (Smart Contract Auditing)

Binance 5K-10K Capital Markets

Binance is hiring a Blockchain Security Engineer to perform smart contract auditing and on-chain security analysis across wallets, blockchains, and related blockchain products in a remote role based in Taipei/Asia.

Taiwan Full-time Junior Security Engineer
Blockchain Encryption Git Go Python Rust VS Code
1 hour ago
Sysdig

Staff Threat Research Engineer

Sysdig 251-1K IT Services

Sysdig is hiring a Staff Threat Research Engineer to research cloud-based attacks and drive threat detection and security solutions for containers, Kubernetes, and cloud environments.

United States Full-time Lead Research Scientist Security Engineer
$163k-$204k
Cybersecurity Kubernetes Linux Penetration Testing
1 hour, 15 minutes ago
Pingwind

Senior Technical Lead for Systems Security

Pingwind 51-250 Internet Software & Services

PingWind is hiring a remote Senior Technical Lead for Systems Security to assess and strengthen security compliance for federal systems, with the main objective of ensuring required controls are met and risks are identified and mitigated.

Anywhere Full-time Lead Security Engineer
Cybersecurity
1 hour, 15 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers