Senior Security Engineer

Senior Security Engineer

The Opportunity

As a Senior Security Engineer, you will collaborate with a team of experienced security professionals to safeguard our corporate and production environments, leveraging state-of-the-art security tools and techniques to play a critical role in detecting, preventing, investigating, and responding to security threats and incidents. As a first line of defense, you are expected to bring deep expertise across various security domains, with strong hands-on experience. In addition, you will partner with cross-functional teams to provide security guidance, support, and training to strengthen our organization’s overall security posture.

This position requires participation in an on-call rotation to support 24/7 security monitoring.

Responsibilities

• Monitor, investigate, and triage security events to support and enhance threat modeling efforts

• Proactively monitor cloud, network, endpoint to identify suspicious activity and emerging threats

• Perform cloud security configuration review, and policy enforcement

• Develop and maintain security alerts, log correlation rules, and dashboards using SIEM solution

• Configure and manage security tools (e.g., SIEM, CSPM, EDR, DLP, vuln scanners). Strong experience in tuning and leveraging these tools is essential

• Conduct quarterly security gap analyses and risk assessments

• Conduct ongoing threat hunts and publish regular threat intelligence reports

• Manage the InfoSec ticket queue, conduct investigations, and document resolutions

• Review and evaluate vulnerability scan results and remediation efforts

• Investigate and respond to data loss prevention (DLP) events

• Document, analyze, and escalate security incidents as needed

• Collaborate with other business units to assess system configurations and ensure secure integration

• Partner with internal stakeholders to define, develop, and implement security standards and best practices

• Conduct third-party security assessments for new and renewing vendors

Qualifications

• 5+ years of experience in information security or 7+ years in IT operations with significant security exposure

• 5+ years of hands-on experience with major cloud service providers (e.g., AWS, Azure, GCP)

• 3+ years of experience working with SIEM tools, including log correlation, alert development, and dashboard creation

• 3+ years of experience in security alert monitoring and incident investigation

• Strong understanding of cloud-native security tools and configurations, including identity and access management, logging/monitoring, and workload protection

• Practical experience with threat hunting techniques and methodologies

• Familiarity with the MITRE ATT&CK framework and its application to detection engineering and incident analysis

• Strong ability to interpret and analyze security logs, network traffic, and system behaviors to detect attack patterns and anomalies

• In-depth knowledge of network, endpoint, and cloud security technologies and principles

• Demonstrated experience collaborating across global teams and working in cross-functional environments

• Knowledge of data security architecture, data classification frameworks, and policy development

• Strong organizational and time management skills with the ability to work independently

• Up-to-date knowledge of recent vulnerabilities, attack vectors, and remediation strategies

• Excellent written and verbal communication skills to support collaboration with technical and non-technical stakeholders

• Experience administering and fine-tuning security infrastructure is a strong plus