Job Title: Senior Security Engineer Job Summary We are seeking a highly skilled Senior Security Engineer to join our team. The ideal candidate will have extensive experience in security operations, threat hunting, and incident response. Key Responsibilities - Investigate and Respond to Security Incidents: Act as a Tier 2/3 SOC analyst and investigate security incidents. Respond effectively and efficiently to minimize the impact of security breaches. - Configure and Secure Systems: Configure and secure systems, including antivirus, firewalls, and OS hardening. Ensure that all systems are up-to-date and running with the latest security patches. - Build Scripts to Automate Agent Deployment, Policy Cleanup, and Scanning Tools: Build scripts to automate agent deployment, policy cleanup, and scanning tools. This will help to streamline processes and reduce manual labor. - Troubleshoot Issues with Tools: Troubleshoot issues with tools like Antivirus, Qualys, DNS filters, and EDR. Identify and resolve technical issues quickly and efficiently. - Perform Manual and Automated Web App/API Pentests: Perform manual and automated web app/API pentests (OWASP Top 10, logic bugs). Identify vulnerabilities and provide recommendations for remediation. - Deliver PoCs and Work with Developers: Deliver proof-of-concepts and work with developers to fix security flaws. Collaborate with cross-functional teams to ensure that security is integrated into every stage of the development process. - Run Internal Red Team Simulations: Run internal red team simulations and test SOC detection (at least quarterly). Identify areas for improvement and provide recommendations for enhancement. - Improve Detection Rules and Visibility: Improve detection rules and visibility in EDR and SIEM tools. Ensure that security information is accurate, complete, and actionable. Requirements - Strong Experience with Windows and Linux System Administration: Have strong experience with Windows and Linux system administration. Be able to configure and manage systems, including network devices and infrastructure. - Managed 300+ Servers: Managed 300+ servers. Have experience with server management, including deployment, configuration, and maintenance. - Previous Work in SOC, Threat Hunting, or Incident Response: Have previous work experience in SOC, threat hunting, or incident response. Understand the principles of security operations and be able to apply them in real-world scenarios. - Skilled with Tools: Be skilled with tools like Burp Suite, Nmap, SQLmap, etc. Have hands-on experience with these tools and be able to use them effectively. - Proficient in Python, PowerShell, or Bash Scripting: Be proficient in Python, PowerShell, or Bash scripting. Be able to write efficient and effective scripts to automate tasks and streamline processes. - Solid Communication Skills in English: Have solid communication skills in English. Be able to articulate complex ideas clearly and concisely. - Experience Using Vulnerability Tracking Platforms: Have experience using vulnerability tracking platforms (e.g., DefectDojo). Be able to identify and track vulnerabilities, and provide recommendations for remediation. - Active Hack The Box, TryHackMe, or Similar Profile: Have an active Hack The Box, TryHackMe, or similar profile. Be able to demonstrate expertise in penetration testing and vulnerability assessment. - Bug Bounty Experience with Public Write-Ups: Have bug bounty experience with public write-ups or results. Be able to demonstrate expertise in finding and reporting vulnerabilities. - Experience with Red or Purple Team Operations: Have experience with red or purple team operations. Be able to participate in tabletop exercises, capture the flag challenges, and other forms of simulation-based training. - Knowledge of C2 Frameworks, Adversary Emulation, or Payload Creation: Have knowledge of C2 frameworks, adversary emulation, or payload creation. Be able to demonstrate expertise in creating custom payloads and emulating adversary behavior. - Cloud Security Knowledge: Have cloud security knowledge (AWS, Azure, or GCP). Be able to design and implement secure cloud architectures. - Certifications like OSCP, OSWE, CRTO: Have certifications like OSCP, OSWE, CRTO, or similar. Be able to demonstrate expertise in security operations and threat hunting. Benefits We offer a competitive salary range of $4500-$6000 USD per month plus holidays. Unlimited PTO is also available. Seniority Level - Seniority Level Mid-Senior level Employment Type - Employment Type Full-time Job Function - Job Function Other - Industries IT Services and IT Consulting