Security Operations Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Security Operations Engineer designing and implementing SecOps tools for a large energy sector project. Role involves developing detection capabilities and supporting incident response activities.
Responsibilities:
- Design and build SecOps tools, including SIEM, SOAR, vulnerability detection and management, EDR, logging pipelines, and user behavior analytics
- Develop architecture patterns and solution designs for the security tool ecosystem
- Evaluate and integrate new tools and platforms to improve detection, response, and automation capabilities
- Build and maintain scalable data ingestion, correlation, and alerting workflows for advanced detection and response
- Coordinate with operations engineers to jointly maintain SecOps workflows and ensure platform reliability
- Develop automation scripts, playbooks, and workflows in SOAR tools to improve response efficiency and reduce analyst workload
- Design and build an internal SecOps product to deliver detection and response capabilities for vulnerabilities, threats, and security incidents
- Integrate with the internal observability product and broader corporate SOC functions
- Provide technical leadership during incidents, including tool behavior, data quality, and technical issues
- Develop, test, and operationalize detection capabilities based on evolving threats and platform telemetry
- Create and maintain detection-as-code artifacts such as Sigma rules, YARA, KQL queries, and static analysis rules
- Validate detection quality through adversary simulation, purple teaming, or continuous tuning
Requirements:
- 5+ years of experience in security operations, engineering, and cloud security tooling
- Engineering experience with SIEM/SOAR, EDR platforms, logging, telemetry pipelines, scripting (Python, PowerShell, Go), and cloud-native security tools
- Experience with infrastructure-as-code, CI/CD toolchains, and container orchestration (Kubernetes)
- Experience with threat modeling, detection engineering frameworks, TTP matrices, and MITRE ATT&CK
- Experience producing architecture artifacts, interface specifications, and onboarding guidelines
- Experience with logging and detection solutions for cloud architectures
- Fluent English, spoken and written (minimum C1)
Benefits:
- Flexible working hours
- Freedom to choose your own projects
- Access to exciting projects across different industries
- Support for professional development
- Competitive compensation
- Dedicated team
Similar Jobs
Security Operations Administrator
Security Operations Administrator managing security alerts and incident response for client's operations. Requires hands-on experience with various security platforms and independent operational management.
Security Operations Engineer
Security Operations Engineer monitoring security alerts and working with senior engineers to protect data. Investigating suspicious activities and refining defensive posture within a cybersecurity team.
Senior Security Operations Engineer
Senior Security Operations Engineer joining CentralReach to design secure architectures with AI-driven enhancements. Focused on cloud security and automated security capabilities across the organization.
Security Operations Center Analyst
Security Operations Center Analyst role with RapDev, a leading Datadog partner. Involves security monitoring, incident response, and working with cloud security solutions.
SOC Analyst – Contract
SOC Analyst at Sunshine Enterprise enhancing security monitoring and incident response capabilities. Focused on threat detection and investigating security events in a centralized operations environment.
IT Security Operations Center Specialist
IT Security Operations Center Analyst monitoring and responding to security alerts for Lincoln Financial. Ensuring the security of the network perimeter and analyzing traffic for threats.
Security Incident Response Specialist, Fluent Ukrainian
Security Incident Response Specialist at SupportYourApp, handling incidents and coordinating responses globally in a fully remote role.
Cyber Defender, SOC Analyst
Cyber Defender responding to threats and improving detection capabilities for an AI security company. Collaborating across functions to strengthen overall security posture in a fast-paced environment.
Analyst, Security Operations Center
Analyst in SEC managing event intake and incident response at Brightspeed. Focus on cyber security monitoring and incident management.
IT and Security Operations Analyst
Join UpGuard IT and Security Operations team handling core IT tasks and improving systems. Engage with a global workforce to support a thriving cybersecurity environment.
Senior Director Analyst – Security Operations, Threat Detection, Response and Automation
Security Operations Analyst focused on security operations research and client engagement. Supporting Gartner clients with expertise in threat detection, incident response, and automation.
Security Operations Engineer
Security Operations Engineer role at FICO focusing on cyber protection and automation development. Involved in incident response and security operations for a leading analytics company.
Regional SOC Analyst
As a Regional SOC Analyst, you'll shape the security architecture at Kelvion and enhance cyber security in an international environment.
Development Security Operations Engineer, Healthcare Consulting
Development Operations Engineer for Sellers Dorsey designing automated systems and tools in healthcare consulting. Bridging software development and security engineering operations to optimize delivery systems.
SOC Team Lead
SOC Team Lead managing a Security Operations Center team and guiding customer onboarding processes. Providing leadership and ensuring delivery of cybersecurity operations for clients.
Security Operations Intern, Summer 2026
Security Operations Intern role supporting security program development and documentation for a technology company. Collaborating with Security leadership to gain practical experience in governance, risk, and compliance.
Cybersecurity Incident Response Analyst
Cybersecurity Incident Response Analyst at Hitachi protecting renewable energy systems from cybersecurity threats. Collaborating with global teams for incident response and security monitoring.
Senior Cybersecurity Engineer, CSOC
Senior Cybersecurity Engineer managing security operations within Starbucks' Cybersecurity Operations Center. Detecting, assessing and responding to cybersecurity incidents to ensure protection against threats.
Senior Director, Security Operations Center
Senior Director leading global Security Operations Center at CFA Institute. Setting strategic vision and managing high-performing teams for security operations.
Cybersecurity Operations Intern
Entry-level Cybersecurity Operations Intern at AMERICAN SYSTEMS performing day-to-day operations of security solutions. Involves resolving security incidents and collaborating with a small team.