SilverSky

Security Engineer

SilverSky

full-time

Posted on:

Location: 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

JuniorMid-Level

Tech Stack

AnsibleCloudDockerFirewallsPythonTerraformUnix

About the role

  • Deploy, configure, & maintain security platforms (SIEM/SOAR, EDR/XDR, firewalls, IDS/IPS, cloud security tools).
  • Integrate customer environments into the security stack.
  • Automate & script security workflows to support SOC operations.
  • Create utilities for normalization and standardization of logs, such as parsers.
  • Administrate log flow routes, such as APIs, webhooks, syslogs, collectors, etc.
  • Maintain updates and patches for SIEMs and supporting systems, including SOAR integrations.
  • Create, monitor, and triage health and availability alarms of SIEMs and supported systems.
  • Troubleshoot security tools, data ingestion, & integration issues.
  • Collaborate with SOC analysts & customers to tune detection rules, reduce false positives, & improve alert quality.
  • Provide escalated technical support to SOC analysts during investigations and analysis of security incidents when needed.
  • Maintain detailed documentation of SOC tool configurations, integrations & maintenance activities.

Requirements

  • 2-5 years of experience as a security engineer, system engineer, or in a SOC/MSSP/MDR environment.
  • Windows & Unix System Administration.
  • Patch Management and Change Control.
  • Proficiency with API and Logging Services.
  • Strong technical skills and hands-on experience with SOC tools such as SIEM, IDS/IPS, EDR, and threat intelligence platforms (FortiSIEM, FortiSOAR, Cynet, SentinelOne a plus).
  • Advanced scripting/programing skills (Python, PowerShell, Bash, RegEx).
  • Experience with container OS, specifically with Docker.
  • Experience with Infrastructure as Code tools (Terraform, Ansible, etc.).
  • Experience with handling high volumes of data and resource scaling.
  • Excellent technical problem solving, including root cause analysis.
  • Ability to provide escalated technical support to SOC analysts and collaborate with cross-functional teams.
  • Maintain detailed documentation of SOC tool configurations, integrations & maintenance activities.