RemoteLeaf Logo
Log in Sign up

Security Operations Engineer

2 weeks, 3 days ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
Datadog Elasticsearch Grafana JIRA OpenTelemetry PagerDuty Prometheus Python SIEM Splunk SQL
Apply Now
WorkWave

WorkWave

WorkWave provides field service management software solutions to automate business operations, improve efficiency, and enhance customer experiences through a suite of products like PestPac® and WorkWave Service™.

Professional Services
251-1K
Founded 1984
View All Jobs 17

Description

  • Implement and configure the new SIEM solution, including data ingestion and performance tuning.
  • Own the security observability platform in Grafana, including onboarding sources, parsing, enrichment, and alert routing.
  • Write, test, and tune detection rules and queries to identify malicious activity with low false-positive rates.
  • Partner with engineering teams to ensure logging and observability capture the right security telemetry and logs.
  • Serve as the primary operator for security monitoring, initial incident triage, and on-call rotation support.
  • Define logging standards, telemetry requirements, retention practices, and cost controls for security data.
  • Build dashboards and SLOs to monitor security telemetry health, including coverage, latency, and drop rate.
  • Develop and maintain incident response documentation such as triage books, runbooks, and playbooks.
  • Act as the technical liaison to the MDR provider and lead deeper analysis and threat hunting for escalated alerts.
  • Own alert routing, incident tracking integrations, phishing response workflows, incident coordination, post-incident reviews, and corrective actions.

Requirements

  • 5-7 years of total experience in Information Security or Security Operations.
  • Experience moving from alert consumer/analyst work into detection engineering or security tooling ownership.
  • Experience with SIEM or observability platforms such as Grafana/Loki, Splunk, Elastic, Sentinel, or Datadog.
  • Strong proficiency with query languages such as LogQL, PromQL, KQL, SPL, or SQL.
  • Experience working with Managed Detection and Response (MDR) providers or MSSPs is highly preferred.
  • Background partnering with DevOps or engineering teams on logging or observability initiatives is a plus.
  • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
  • Industry certifications such as GCIH, GCIA, GCED, GMON, Security+, or CySA+ are highly desirable.
  • Familiarity with Python or similar scripting languages for automation or API integration is beneficial.
  • Deep understanding of incident response lifecycle frameworks such as NIST or SANS.

Benefits

  • $130,000 - $150,000 annual salary range.
  • Remote-first work environment with flexibility to work virtually.
  • Health and dental coverage.
  • 401(k) with company match.
  • Flexible Time Off policy or generous PTO plan, plus paid holidays.
  • Up to 4 weeks of paid bonding leave.
  • Tuition reimbursement and access to ongoing training resources.
  • Employee Assistance Program with 24/7 counseling, financial counseling, legal guidance, and adoption assistance.
  • 24/7 virtual medical care through Teladoc.
  • Quarterly peer-nominated awards and regional discounts and perks.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Stellar Cyber

Senior / Staff Software Engineer - Parser Team

Stellar Cyber 51-250 Professional Services

Stellar Cyber is hiring a Senior or Staff Software Engineer to own parser development for its AI-driven cybersecurity platform, turning diverse security logs into normalized data that powers detection and analytics.

Taiwan Japan Full-time Senior Security Engineer Software Engineer
Apache Spark AWS Azure C++ Cybersecurity Docker GCP Hadoop Java JSON Kafka Kubernetes LLM Python Ruby SIEM XML
4 hours, 52 minutes ago
GuidePoint Security

IAM Engineer - SailPoint ISC (Remote in the US)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a full-time Identity Governance and Administration Engineer to implement and enhance SailPoint ISC/IDN identity governance solutions for enterprise clients.

United States Full-time Senior Security Engineer
Active Directory JSON REST API SAP SOAP XML
4 hours, 56 minutes ago
MetroStar

Sr. Network Security Engineer III (Clearable) (6563)

MetroStar 251-1K IT Services

MetroStar is hiring a Sr. Network Security Engineer III to secure and harden mission-critical federal network environments while supporting secure mission delivery for a high-visibility customer.

United States Full-time Senior Security Engineer
$207k-$320k
Agile Cisco Fortinet IDS IPS
12 hours, 14 minutes ago
Trility Consulting

Mid-Level DevSecOps Consultant - AWS/CMMC

Trility Consulting 51-250 Internet Software & Services

Trility Consulting is hiring a Mid-Level DevSecOps Consultant to design and operate a CMMC-aligned GitLab platform for a regulated aerospace environment on Kubernetes.

United States Full-time Mid Level DevOps Engineer Security Engineer
Argo CD AWS CI/CD DevSecOps GitLab GitOps Kubernetes Terraform
17 hours, 22 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers