Security Operations Engineer II
SWK Technologies, Inc.
full-time
Posted on:
Location Type: Remote
Location: United States
Visit company websiteExplore more
About the role
- Monitor, detect, analyze, and respond to security threats in real time.
- Lead incident response efforts—from containment to recovery.
- Hunt for threats, analyze logs, and fine‑tune detection rules.
- Perform forensic investigations and reconstruct attack paths.
- Harden servers, workstations, and network infrastructure using CIS, STIGs, and best practices.
- Manage and optimize firewalls (Palo Alto, Fortinet, SonicWall), IDS/IPS, SIEM, and EDR tools.
- Drive vulnerability management and partner with teams to remediate risks.
- Create clear documentation, playbooks, and security reports.
Requirements
- 5+ years Windows/Linux admin experience + 3+ years in security operations/IR/forensics.
- Deep knowledge of OS internals, firewalls, network security, and security frameworks.
- Hands-on experience with SIEM, EDR, IDS/IPS, and vulnerability scanners.
- Strong analytical, communication, and documentation skills.
- Ability to stay calm and effective during high-severity incidents.
- Passion for continuous learning and staying ahead of emerging threats.
- Experience with MSP/MSSP environments a plus; SonicWall experience preferred.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Windows administrationLinux administrationsecurity operationsincident responseforensicsnetwork securityvulnerability managementlog analysisdetection rulesforensic investigations
Soft Skills
analytical skillscommunication skillsdocumentation skillscalm under pressurecontinuous learning