(Senior) Security Engineer, Security Engineering & Threat Intelligence
We are seeking a qualified individual to join our Global Cybersecurity Services Team as an intermediate level security engineer. The primary focus of this role will involve upgrading our security technology stack, creating AI-driven security automation workflows, and contributing to security operations and threat management within our advanced cybersecurity operating model.
We are in the process of establishing a cutting-edge, multi-cloud, intelligence-driven security operations capability that will heavily incorporate AI and automation. This endeavor will demand a range of engineering and operational proficiencies at various levels.
Responsibilities
Automation & DevOps:
Develop and manage CI/CD pipelines to optimize software delivery workflows with an emphasis on speed, security, and quality.
Create and maintain Infrastructure as Code (IaC) templates using tools such as Ansible, Terraform, or CloudFormation for streamlined infrastructure provisioning across cloud and on-premise environments.
Design and implement automated solutions and workflows using scripting languages or automation platforms to enhance system efficiency.
Security Engineering:
Enhance and manage the security operations technology stack, prioritize cloud native solutions, and integrate DevOps best practices.
Implement security logging and detection engineering practices, automating processes and utilizing AI to enhance efficiencies.
Direct projects such as Endpoint Security enhancements and Threat Hunting initiatives while incorporating AI into operational workflows.
Detection & Response:
Manage the infrastructure related to detection and response engineering, including telemetry pipelines, automation, and AI-driven solutions.
Support alert pipelines and develop detection use cases to enhance threat detection capabilities.
Threat Intelligence Management:
Assist with backend and infrastructure tasks entailing Threat Intelligence Projects, Threat Analysis, and making Threat Intelligence actionable.
Collaborate on Threat Intelligence Action items and provide support during incidents.
Security Projects:
Oversee projects related to Attack Simulation, Use Case Validation, Network/Endpoint security reviews, and other security-related initiatives.
Leadership:
Possess cross-functional leadership skills and manage stakeholders effectively.
Mentor and contribute to the professional growth of the team.
Requirements
- 5-7 years of Information Security experience, particularly in Security Engineering, Operations, Cyber Threat Intelligence, or Cloud Security.
- Proficient in CI/CD tools, IaC tools like Terraform, Ansible, and scripting languages like Python, Bash, or PowerShell.
- Experience with security tools and platforms including SIEM, EPP/EDR/XDR, SOAR, and Threat Intelligence platforms.
- Strong familiarity with Cloud environments such as AWS, Azure, and GCP.
- Practical experience in applying AI/ML in cybersecurity contexts.
- Self-motivated, detail-oriented, and results-driven.
- Collaborative team player with strong communication skills in English.
