Security Operations Engineer

Insight Global is seeking a Security Operations Engineer to support one of our industrial supply clients. This will be a fully remote and direct hire opportunity.

They will be responsible for supporting and enhancing the organization’s security operations and engineering capabilities. This role blends hands-on threat detection and incident response with security platform administration, automation, and continuous improvement. The position plays a critical role in maintaining the health and effectiveness of the enterprise security stack, strengthening identity and cloud security controls, and ensuring the organization’s ability to detect, respond to, and mitigate evolving cyber threats.

Essential Job Duties and Responsibilities:

• Support daily security operations through proactive threat hunting across endpoint, network, identity, email, and cloud environments.
• Support investigation and response activities for high-confidence alerts using behavioral analytics, threat intelligence, and MITRE ATT&CK–aligned analysis.
• Manage and maintain detection pipelines, correlation rules, and automated response workflows across SIEM, EDR/XDR, SOAR, and email security platforms.
• Act as subject matter expert for the enterprise security stack, ensuring platform health, optimization, and continuous improvement.
• Administer and support identity and access management (IAM) controls, including conditional access, role-based access control (RBAC), and Zero Trust enforcement across enterprise platforms.

Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Support the vulnerability management program through risk analysis, remediation coordination, validation of security fixes, and translation of findings into actionable guidance for infrastructure and development teams.

Job Qualifications:

• Education requirement: Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field, or equivalent practical experience.

Relevant experience should include:

• 5+ years in a technical security role (SOC Tier 2/3, security engineering, incident response, or equivalent).
• Hands-on experience with SIEM (e.g., Sentinel, Splunk), EDR/XDR (e.g., SentinelOne, Defender), and SOAR platforms.

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Proficiency in PowerShell and Bash scripting with practical experience automating security and system administration tasks.
• Experience administering Microsoft platforms (Microsoft 365, Windows 11, Active Directory, Azure, Intune, Entra, Defender, etc.).
• Experience with threat detection engineering and mapping detections to MITRE ATT&CK.
• Familiarity with secure baselining (CIS/NIST), access controls, and platform hardening.

Exact compensation may vary based on several factors, including skills, experience, and education.

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.