Security Operations Engineer II

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Security Operations Engineer II (Employer of Record) in India.

This role sits at the heart of a globally distributed security engineering team, focused on protecting enterprise systems, users, and infrastructure through advanced detection, automation, and incident response capabilities. You will work closely with U.S.-based stakeholders to operate and enhance modern security tooling across SIEM, SOAR, EDR, and web security platforms. The position blends hands-on engineering with SecOps expertise, emphasizing automation, reliability, and continuous improvement. You will contribute to building scalable security systems that reduce risk, improve visibility, and strengthen threat detection across the organization. Operating in a fast-paced, cloud-driven environment, you will help evolve security operations through engineering excellence and proactive defense strategies. This is a high-impact role ideal for professionals who enjoy solving complex security challenges while working in a collaborative global setup.

Accountabilities

In this role, you will operate and enhance enterprise security tools while building automation and engineering solutions to improve detection, response, and operational efficiency. You will contribute to securing systems by tuning SIEM/SOAR and EDR platforms, managing proxy and WAF policies, and supporting incident response across a 24/7 security operations environment. A key part of your work will involve developing scripts, APIs, and Infrastructure-as-Code solutions to streamline repetitive security tasks and improve consistency across environments.

• Operate, tune, and maintain security tools including SIEM, SOAR, EDR, WAF, proxy, and email security systems
• Build automation using Python, PowerShell, APIs, and SOAR playbooks to reduce manual effort
• Develop and maintain detection rules, improve alert quality, and reduce false positives
• Support incident detection, response, containment, eradication, and recovery processes
• Manage security policies including SSL inspection, identity-aware controls, and traffic filtering rules
• Maintain documentation, dashboards, runbooks, and security metrics (MTTR, uptime, coverage, etc.)
• Participate in on-call rotations and provide support for security tool availability and incidents
• Implement CI/CD and Infrastructure-as-Code practices for secure and auditable changes
  
  

Requirements

The ideal candidate brings hands-on experience in cybersecurity, security operations, or SOC environments, along with strong scripting and automation capabilities. You should be comfortable working with security tools, analyzing logs and threats, and supporting incident response in a fast-paced environment. A solid understanding of network security fundamentals, detection engineering concepts, and modern attack techniques is essential.

• Bachelor’s degree in Computer Science, Information Systems, or related field (or equivalent experience)
• 2+ years of experience in cybersecurity, SOC, incident response, or security engineering roles
• Experience operating SIEM, SOAR, EDR, WAF, or proxy/security platforms
• Strong scripting skills in Python and/or PowerShell with API integration experience
• Familiarity with CI/CD pipelines, Git workflows, and Infrastructure-as-Code concepts
• Understanding of TLS/SSL, HTTP, network routing, and identity-aware security controls
• Knowledge of MITRE ATT&CK framework, Cyber Kill Chain, and common attack methodologies
• Strong analytical thinking, documentation discipline, and incident response skills
• Ability to work in rotating on-call schedules, including nights and weekends
  
  

Benefits

• Competitive compensation package aligned with experience and expertise

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Performance-based bonus and additional allowances
• Employer-paid insurance and statutory benefits via EoR structure
• Remote-first setup with collaboration across global security teams
• Exposure to enterprise-scale security engineering and modern cloud environments
• Learning opportunities in automation, detection engineering, and advanced SecOps practices
• Career growth within a high-impact, globally distributed security organization
  
  

How Jobgether Works

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.