RemoteLeaf Logo
Log in Sign up

Senior Security Operations Engineer

2 months ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
AWS Azure Bash GCP Python SIEM Splunk
Apply Now
SWORD Health

SWORD Health

SWORD Health provides AI-powered digital physical therapy solutions designed to prevent pain, support recovery, and enhance overall health, while also aiming to transform the rehabilitation industry through innovative technology and clinical oversight.

Health Care Providers & Services
251-1K
Founded 2015
$324M raised
View All Jobs 34

Description

  • Design and continuously improve detection and alerting controls to reduce noise and improve response quality.
  • Build, test, and automate incident response playbooks and runbooks.
  • Prioritize alerts using a data-driven triage framework aligned with business impact and threat context.
  • Lead incident investigations, including root cause analysis and digital forensics, and turn findings into detection improvements.
  • Conduct threat intelligence and threat hunting to identify new TTPs and enrich security controls.
  • Own incident handling from detection through resolution in collaboration with engineering, IT, and business teams.
  • Define and maintain operational metrics for incident response and use them to drive continuous improvement.
  • Leverage AI to automate and optimize security operations workflows, including alert triage, enrichment, and incident classification.
  • Design and maintain AI-assisted runbooks with human-in-the-loop validation for critical decisions.
  • Integrate security tooling with AI platforms and APIs to streamline investigation, response, and reporting.

Requirements

  • Must be able to obtain and maintain a US Public Trust clearance.
  • Bachelor’s degree in Computer Science, Cybersecurity, or equivalent professional experience.
  • Solid experience in cloud environments such as AWS, GCP, or Azure, with strong understanding of cloud-native threats.
  • Proficiency in scripting languages such as Python and Bash for automation and tooling development.
  • Hands-on experience with SOC tools and platforms, including SIEM tools such as Splunk or Sentinel, SOAR, EDR/XDR, and log management.
  • Strong understanding of incident containment and eradication strategies and experience coordinating response with technical teams.
  • Familiarity with security frameworks and standards including NIST 800-61, CIS Controls, MITRE ATT&CK, and ISO 27001.
  • Experience with threat modeling, adversary emulation, and risk-based alert tuning.
  • Forensics experience, including investigating incidents and preserving digital evidence.
  • Ability to communicate security risks and actions to both technical and non-technical audiences.
  • Proven track record of leading cross-functional efforts in high-pressure situations.
  • Ability to foster collaboration across InfoSec, IT, and engineering teams.
  • Ability to consume and synthesize intelligence about actors, techniques, or situations to identify emerging risks.
  • Experience improving processes and operational workflows.
  • Ability to evaluate the accuracy, reliability, and security implications of AI-assisted decisions in operational environments.

Benefits

  • Competitive salary and career development opportunities.
  • Remote-first or hybrid work policy with flexible working hours.
  • Unlimited vacation / discretionary PTO plan.
  • Comprehensive health, dental, and vision insurance.
  • Equity shares.
  • 401(k) retirement plan.
  • Parental leave.
  • Health and well-being support, including free digital therapist sessions for employees and family.
  • Financial advisory services and supplemental insurance benefits.
  • Paid company holidays.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

LivePerson

Security Engineer II

LivePerson 1K-5K Internet Software & Services

LivePerson is hiring a security professional on its Global Product and Tech: CISO team to help protect cloud, infrastructure, and IT systems while improving security operations across a global environment.

Bulgaria Full-time Mid Level Security Engineer
Active Directory Elasticsearch Linux macOS Python
7 hours, 9 minutes ago
Capital Technology Group

Public Key Infrastructure (PKI) Architect

Capital Technology Group 51-250 Internet Software & Services

Capital Technology Group is seeking a PKI Architect to modernize and support enterprise public key infrastructure and identity trust services for mission-critical federal systems.

United States Full-time Senior Infrastructure Engineer Security Engineer
$110k-$150k
Ansible AWS Azure CI/CD Cybersecurity DevSecOps Docker HashiCorp Vault Kubernetes SonarQube Splunk
7 hours, 54 minutes ago
Netguru

Senior Cybersecurity Engineer - Freelance

Netguru 251-1K Internet Software & Services

Netguru is hiring a Senior Cybersecurity Engineer to support a technical white-box security audit of a client's data and AI ecosystem, including Google Cloud tools, data pipelines, third-party integrations, and LLM/AI agents.

Poland Freelance Senior Security Engineer
$0k-$0k
Agile CI/CD Cybersecurity GCP Network Security
8 hours, 24 minutes ago
Rithum

Staff Information Security Engineer - AI First

Rithum Internet Software & Services

Rithum is hiring a Staff AI-First Information Security Engineer to secure AI adoption across its commerce platform by designing and automating guardrails, controls, and monitoring for cloud, enterprise, and AI-powered systems.

United States Full-time Lead AI Engineer Security Engineer
$170k-$220k
AWS LLM Python SIEM Terraform
1 day, 7 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers