Strengthen defenses through technical expertise, manage and configure security tools, and develop security automation scripts. Identify and remediate system vulnerabilities, engineer scalable remediation strategies, and automate fixes. Collaborate with the security team to improve the efficiency and consistency of security operations.
Key Highlights
Technical Skills Required
Benefits & Perks
Job Description
Not available for c2c engagements | Will not respond to 3rd party vendors
Must be eligible for full time employment without need for work authorization sponsorship now or in the future
Tech Stack:
- Arctic Wolf
- Blackpoint MDR
- ConnectWise MDR
- Huntress MDR + EDR
- SaaS Alerts
- ConnectSecure
- Sentinel One
- MS Defender for End Points
The Security Engineer is responsible for strengthening our defenses through technical expertise. You'll own critical security platforms, ensuring they are optimally configured, maintained, and effectively utilized to protect our clients’ assets. You'll identify and remediate system vulnerabilities, engineer scalable remediation strategies, and automate fixes to reduce the attack surface. By developing and refining scripts for automation, you'll improve the efficiency and consistency of security operations, from vulnerability management to incident response workflows. You'll handle complex tool requests and configuration challenges, contributing to a more robust and resilient security posture.
What you will be doing
- Manage & Configure Security Tools: Configure, maintain, optimize, and troubleshoot core security platforms to ensure they are functioning effectively and aligned with security policies.
- Handle Advanced Tool Requests: Process escalated or complex requests from the Security Analyst team regarding security tools, including global/difficult exclusions, user access management, and changes requiring engineer-level permissions.
- Conduct Tool Audits & Reviews: Perform regular reviews and audits of security tool configurations (e.g., quarterly settings reviews) to ensure compliance, identify misconfigurations, and resolve configuration-related alerts.
- Investigate Vulnerabilities: Analyze systems and applications to investigate identified vulnerabilities, understand their potential impact, and determine root causes.
- Remediate Vulnerabilities: You’ll work with clients to address vulnerabilities in their environments, ensuring that clients are well protected.
- Develop Security Automation: Create, test, and maintain scripts (using languages like PowerShell, Bash, etc.) to automate tasks related to vulnerability management (e.g., mass deployment, reporting, remediation) and security alert handling (e.g., improving log collection).
- Collaborate with Security Team: Work closely with fellow Security Analysts and Security Engineers, sharing information, participating in team discussions, and contributing to a collaborative security environment.
- Working Escalated Tickets: Work tickets that have been escalated to you, and potentially coach Security Analyst I and Security Analyst II on next steps.
- Engage with Users/Clients: Communicate professionally and clearly with end-users or clients to gather details about potential security issues, explain security procedures, or provide guidance during incident resolution.
- Liaise Across Departments: Interact effectively with other teams (e.g., Reactive Support, Client Strategy, NOC) to coordinate security responses and share necessary information.
- Document Actions: Maintain accurate and detailed records of investigations, actions taken, communications, and resolutions within ConnectWise.
- Provide Support: Offer timely and helpful support related to security inquiries, upholding a professional and customer-service-oriented approach in all interactions.
- In the absence of engineering tasks, you will be expected to assist with ticket management—primarily by monitoring and responding to alert-related tickets
Bonus points for
- Desired certifications:
- Security +
- CCNA Security
- CCNP Security
- CISSP
- CySA+