Security Engineer

Thanks for the click. We know your time is valuable so we will get right to it.

We've amassed some of the best and brightest minds in cyber security who are passionate about protecting the digital world. Our team blends advanced technology alongside deep expertise to tackle the toughest cyber threats out there. Put simply, our mission is to stay ahead of the curve and create a safer digital landscape for our partners, and we believe adding a
Security Engineer
will up our cyber game.

The
Security Engineer
will be responsible for deploying, configuring, & maintaining our SIEM/SOAR & other tools that power detection, monitoring, & response across our MSSP & MDR offerings. This role will partner closely with SOC analysts, NOC, IT, & other teams to ensure log sources are properly maintained, data is normalized, & detection content is fine-tuned to deliver actionable alerts. This professional serves as a subject matter expert in parsing, system availability, and log flows, working on projects and as needed by stakeholder requests. The ideal candidate is detail-oriented, strong in problem-solving, & passionate about enabling security operations with high-performing SIEM/SOAR & other technology capabilities.

What you'll be doing:

• Deploy, configure, & maintain security platforms (SIEM/SOAR, EDR/XDR, firewalls, IDS/IPS, cloud security tools).
• Integrate customer environments into the security stack.
• Automate & script security workflows to support SOC operations.
• Create utilities for normalization and standardization of logs, such as parsers.
• Administrate log flow routes, such as APIs, webhooks, syslogs, collectors, etc.
• Maintain updates and patches for SIEMs and supporting systems, including SOAR integrations.
• Creation, monitoring, and triage of health and availability alarms of SIEMs and supported systems.
• Troubleshoot security tools, data ingestion, & integration issues.
• Collaborate with SOC analysts & customers to tune detection rules, reduce false positives, & improve alert quality.
• When needed, provide escalated technical support to SOC analysts during investigations and analysis of security incidents.
• Maintain detailed documentation of SOC tool configurations, integrations & maintenance activities.

What does it take to succeed in this role?

• 2-5 years of experience as a security engineer, system engineer, or in a SOC/MSSP/MDR environment.
• Windows & Unix System Administration.
• Patch Management and Change Control.
• Proficiency with API and Logging Services.
• Strong technical skills and hands-on experience with SOC tools such as SIEM, IDS/IPS, EDR, and threat intelligence platforms (FortiSIEM, FortiSOAR, Cynet, SentinelOne a plus).
• Advanced scripting/programing skills (Python, PowerShell, Bash, RegEx).
• Experience with container OS, specifically with Docker.
• Experience with Infrastructure as Code tools (Terraform, Ansible, etc.).
• Experience with handling high volumes of data and resource scaling.
• Excellent technical problem solving, including root cause analysis.

In addition to the technical expertise, we expect respect, opinions, and thoughtful input.

How we work?
Our 3 values define how we operate internally as well as externally:

• Vision
• We embrace a forward-thinking mindset. Our team has a clear and inspiring picture of the future that helps drive our decisions towards creating and delivering world-class security services.
• Velocity
• We have a bias for action. We move swiftly and with purpose toward our goals and objectives and can easily adapt (and adjust) along the way.
• Vigilance
• We foster a culture of proactive awareness for our company and our customers, who trust us to be an extension of their team. We are always looking for areas where we can innovate, improve, fix, transform and revolutionize, which ensures the protection, safety and success of everyone at SilverSky.

Individuals that can act intelligently and confidently without an ego will thrive.

If this sounds interesting and you are passionate about redefining how the world thinks about cyber security, we want to hear from you. Apply now if you are interested in learning more about how we can change the rules of engagement, together.

Work Arrangement
This is a remote position based in the United States.

At this time, we are not hiring candidates who require visa sponsorship. All applicants must be legally authorized to work in the United States without the need for current or future visa sponsorship. Candidates must also be able to work with us on a long-term basis.

About SilverSky
We are a global cyber security company with more than 20 years of professional experience in the industry. Our 300+ employees are on a mission to protect our customers with comprehensive, adaptive security services that maximize technology and automate responses, while empowering security analysts to hunt for threats, react and respond immediately. It's the human enhanced response that differentiates SilverSky and allows us to create the most comprehensive managed detection and response (MxDR) solution in the industry by delivering on our Vision, Velocity, Vigilance philosophy. Follow us on LinkedIn and X.