Security Operations Engineer

1 month ago


Dallas, United States Alcority Full time
Security Operations Detection Engineer Job Description:

About the Role

The role of Security Operations Detection Engineer reports directly to the lead of Security Operations and is part of the office of the CISO. This role is accountable for the architecture, engineering, and automation of in-house security platforms including the Microsoft Sentinel SIEM and associated SOAR tooling. The ideal candidate will have deep technical expertise in the Microsoft security stack and have demonstrated excellence in the development of security automation across domains such as alert triage, response, as well as other security processes such as patch and vulnerability management. They will also work extensively with various IT teams to define appropriate log ingestion, data enrichment, alerting and response actions via the SIEM/SOAR platform. They will also support the Security Operations Center (SOC) for advanced SIEM queries and analytic alerts. Primary responsibilities in this role include:

  • Identification of and deployment of new detections or automations within Alcority's SIEM / SOAR platform.
  • Drive creation and implementation of SIEM content (e.g. rules, alerts, dashboards, etc.)
  • Ensure better analytics via SIEM - improve signal-to-noise ratio in SIEM content. Conduct regular assessments and tuning of Sentinel configurations to reduce false positives and enhance detection capabilities
  • Design and implementation of automation for alert enrichment, common detections closure, and response actions
  • Benchmarking of existing detections and development of a roadmap for expansion of coverage.
  • Continuous testing of SIEM / SOAR platform to identify and remediation gaps in detection and prevention coverage
  • Integration with the external SOC provider to optimize the partnership and improve detection and response capabilities
  • Consolidation of data sources across many Microsoft tenants, systems, and companies into a single source for consolidation of Security Operations procedures
  • Partnering with various IT organizations to design and implement security monitoring across all core business applications
  • Maintenance of all Security Operations tooling to ensure high availability of all log sources
  • Partnering with Security Analysts to enhance Security Operations procedures as well as incident response.
  • Consolidation and automation of Security Operations Metrics from various sources
  • Automation of Incident Response processes and workflows
  • Development of and adherence of SIEM Engineering change control procedures and processes
  • Management of DLP tools and technologies, ensuring they are configured correctly and functioning optimally
  • Provide training and support to team members on SIEM functionalities


Requirements and Qualifications
  • Bachelor's degree in Computer Science, Information Security, or a related field.
  • 3+ years in a security related engineering role
  • 2+ years of SIEM/SOAR Engineering Experience
  • Deep technical understanding of Microsoft Sentinel, Log Analytics, Defender, and other Microsoft security tooling
  • Demonstrated excellence is the area of security automation
  • Proficiency with automation tooling (e.g. Terraform) and scripting languages (KQL, Python, Powershell)
  • Proficiency with Microsoft Power Apps, Azure Functions, Logic Apps, and other Microsoft automation tooling
  • Proficiency in API development with the goal of integrating security tooling
  • Familiarity with various log ingestion methodologies into a SIEM environment.
  • Familiarity with automated development lifecycles and pipelines (DevOps)
  • Familiarity with Cisco security tooling including Meraki and Umbrella
  • Experience in multi-tenant or MSP like environments a plus
  • Possession of or ability to obtain professional certifications in information security or risk management, such as a CISSP, CISM, CEH, or forensic certifications.
  • Self-starter who demonstrates strong ownership of their domain and can benchmark the current state, propose improvements, and implement with little supervision
  • Natural passion for security and strong drive to automate common tasks
It is impossible to list every requirement for, or responsibility of, any position. Similarly, we cannot identify all the skills a position may require since job responsibilities and the Company's needs may change over time. Therefore, the above job description is not comprehensive or exhaustive. The Company reserves the right to adjust, add to or eliminate any aspect of the above description. The Company also retains the right to require all employees to undertake additional or different job responsibilities when necessary to meet business needs.

Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

Benefits & Perks:
  • Time Off: 25 days of PTO for full-time employees and 12 company holidays.
  • Company Paid Benefits: Life insurance, Short-term disability, Long-term disability, Paid parental leave, Employee Assistance Program, and medical insurance in our high deductible health plan.
  • Optional Employee Paid Benefits: Medical insurance in our EPO plan, Dental benefits, and Vision benefits. We also offer Health Savings Accounts, Flexible Spending Accounts, Supplemental Life insurance, and more.
  • 401(k): Eligible after 60 days. Discretionary company match of 50% up to the first 6% of contributions.


EQUAL OPPORTUNITY EMPLOYER

ALCORITY IS AN EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER. THE COMPANY'S POLICY IS NOT TO DISCRIMINATE AGAINST ANY APPLICANT OR EMPLOYEE BASED ON RACE, COLOR, RELIGION, NATIONAL ORIGIN, GENDER, AGE, SEXUAL ORIENTATION, GENDER IDENTITY OR EXPRESSION, MARITAL STATUS, MENTAL OR PHYSICAL DISABILITY, AND GENETIC INFORMATION, OR ANY OTHER BASIS PROTECTED BY APPLICABLE LAW. THE FIRM ALSO PROHIBITS HARASSMENT OF APPLICANTS OR EMPLOYEES BASED ON ANY OF THESE PROTECTED CATEGORIES.

  • Dallas, United States Alcority Full time

    Security Operations Detection Engineer Job Description: About the Role The role of Security Operations Detection Engineer reports directly to the lead of Security Operations and is part of the office of the CISO. This role is accountable for the architecture, engineering, and automation of in-house security platforms including the Microsoft Sentinel SIEM and...


  • Dallas, United States Saragossa Full time

    Join a growing team and help to scale the security operations function at the technology arm of a private investment firm experiencing exponential growth.As a Security Operations Engineer, You'll be responsible for the engineering and automation of in-house security platforms including the Microsoft Sentinel SIEM and associated SOAR tooling. Having technical...


  • Dallas, United States Alcority Full time

    Security Operations Detection Engineer Job Description: About the Role The role of Security Operations Detection Engineer reports directly to the lead of Security Operations and is part of the office of the CISO. This role is accountable for the architecture, engineering, and automation of in-house security platforms including the Microsoft Sentinel SIEM...


  • Dallas, Texas, United States Marksman Security Full time

    OverviewMarksman Security Corporation is a leading provider of security solutions, and we are currently seeking a highly skilled Security Command Center Operator to join our team.Job SummaryThis is a unique opportunity to work in a fast-paced 24/7 Central Command Center environment, safeguarding the assets of the facility, employees, and guests. As a...


  • Dallas, United States Sunstates Security Full time

    OverviewJoin one of the fastest-growing and largest privately held security companies in the U.S.! Since 1998, Sunstates Security has established a reputation for providing excellent customer service and quality work environments for its team across the country. We're committed to hiring, developing, and retaining a diverse and exceptionally qualified...


  • Dallas, Texas, United States Alcority Full time

    Job Summary:About Alcority, we are seeking a highly skilled Security Operations Engineer to join our team. The ideal candidate will have a deep understanding of Microsoft Sentinel and the ability to design and implement security automation solutions. In this role, you will be responsible for architecting, engineering, and automating in-house security...


  • dallas, United States Saragossa Full time

    Join a growing team and help to scale the security operations function at the technology arm of a private investment firm experiencing exponential growth.As a Security Operations Engineer, You'll be responsible for the engineering and automation of in-house security platforms including the Microsoft Sentinel SIEM and associated SOAR tooling. Having technical...


  • Dallas, United States Glocomms Full time

    We are partnered with a major private investment firm to bring on a Security Cloud Detection Engineer out of Dallas, TX*. The ideal candidate will be responsible for enhancing their security operations through the architecture, engineering, and automation of detection and response mechanisms. This role involves working with Microsoft Sentinel SIEM, SOAR...


  • Dallas, United States Marksman Security Full time

    Overview Marksman Security Corporation is hiring immediately for a Security Command Center Operator. This position oversees the daily security operations of a 24/7 Central Command Center, safeguarding the assets of the facility, employees and guests. This position will be responsible for monitoring, directing and responding to security and safety issues...


  • dallas, United States Glocomms Full time

    We are partnered with a major private investment firm to bring on a Security Cloud Detection Engineer out of Dallas, TX*. The ideal candidate will be responsible for enhancing their security operations through the architecture, engineering, and automation of detection and response mechanisms. This role involves working with Microsoft Sentinel SIEM, SOAR...

  • Security Engineer

    2 days ago


    Dallas, United States KTek Resourcing Full time

    Role: Security Engineer(Azure & GCP)Location: Primary location Dallas TX, Second preference Charlotte, NC (Hybrid)Contract Role Job DescriptionAbout this role:This position will be part of a Team that performs engineering and management of data protection technologies that include Managed HSM’s, Azure key Vault and other key and secret management systems....


  • Dallas, United States Security Engineers, Inc Full time

    3rd Shift Unarmed Security Officer- Level II3rd ShiftSaturday-Tuesday10pm-6amRequires a current TX Level II Officer LicenseMust be at least 18 years of age.Must be a US citizen or present valid right to work paperwork.Ability to work Weekends (both Saturday and Sunday).A curious nature that helps you to remain aware of the activities around you.Provide...


  • Dallas, United States Centraprise Full time

    Application security Engineer Tampa/Dallas/NJ Fulltime Permanent Job Description: Skill: Application security. Application Security Engineer is someone who is responsible for ensuring the security of the company's networks, data and applications. Application Security Engineer ensures that applications and services of an organization are secured and...


  • dallas, United States KTek Resourcing Full time

    Role: Security Engineer(Azure & GCP)Location: Primary location Dallas TX, Second preference Charlotte, NC (Hybrid)Contract Role Job DescriptionAbout this role:This position will be part of a Team that performs engineering and management of data protection technologies that include Managed HSM’s, Azure key Vault and other key and secret management systems....


  • dallas, United States Wisdom Infotech Full time

    Job Title: Product Security Engineer – Mobile ApplicationsLocation: Plano, TX Job Description:Need someone who has Hardware Pen testing & Embedded Software experience essentially.Need a Mobile Application Security Engineer with Pen testing preferably Vehicle testing. (CFL/CEH)This position’s responsibility includes:Conduct analysis of security...


  • Dallas, United States Wisdom Infotech Full time

    Job Title: Product Security Engineer – Mobile ApplicationsLocation: Plano, TX Job Description:Need someone who has Hardware Pen testing & Embedded Software experience essentially.Need a Mobile Application Security Engineer with Pen testing preferably Vehicle testing. (CFL/CEH)This position’s responsibility includes:Conduct analysis of security...

  • Security Engineer

    1 month ago


    Dallas, United States INSPYR Solutions Full time

    Title: Security Engineer Location: Remote Duration: 12 months, can extend Compensation: $65-68/hr Work Requirements: US Citizen, GC Holders or Authorized to Work in the U.S. Skillset / Experience: You will join a critical security team responsible for support programs that deliver new and innovative approaches to securing access management...

  • IT Systems

    1 month ago


    Dallas, United States Robert Half Full time

    The IT Systems Engineer is responsible for effective provisioning, systems security, installation/configuration, operation, and maintenance of systems hardware, software, and related infrastructure services internally and with external service providers. This individual participates in technical research and development to enable continuing innovation within...

  • IT Systems

    1 month ago


    dallas, United States Robert Half Full time

    The IT Systems Engineer is responsible for effective provisioning, systems security, installation/configuration, operation, and maintenance of systems hardware, software, and related infrastructure services internally and with external service providers. This individual participates in technical research and development to enable continuing innovation within...

  • IT Systems

    1 month ago


    dallas, United States Robert Half Full time

    The IT Systems Engineer is responsible for effective provisioning, systems security, installation/configuration, operation, and maintenance of systems hardware, software, and related infrastructure services internally and with external service providers. This individual participates in technical research and development to enable continuing innovation within...