Principal Engineer/Lead, Detection and Response

Summary

Join Aviatrix, a leader in cloud networking and security solutions, as a Principal Engineer/Lead in Detection and Response. You will play a critical role in the Security Operations Center (SOC), collaborating with our MDR provider and internal teams. Key responsibilities include monitoring and analyzing security alerts, investigating and responding to incidents, and contributing to continuous security improvements. This senior-level position requires extensive experience in cloud network security, incident response, and SOC processes. You will leverage threat intelligence, optimize security tools, and maintain detailed incident documentation. The role offers a competitive salary and comprehensive benefits package.

Requirements

• 8+ years of experience in a SOC environment or in security operations, with a focus on cloud network security and incident response
• Deep knowledge of the MITRE attack framework
• Proficiency in one or more programming or scripting languages, such as Python or Go, for automation tasks
• Cloud Security Knowledge: Solid experience with cloud platforms (AWS, Azure, GCP) and cloud security concepts and controls
• Proficiency in using and optimizing SOC tools, such as SOAR, SIEM, EDR, and NDR solutions; experience with log analysis, network security monitoring, and threat detection tools
• Solid understanding of endpoint protection, routers, switches, perimeter security, authentication, encryption, and VPN solutions
• Incident Response: Solid understanding of incident response methodologies, including investigation, containment, eradication, and recovery
• Threat Intelligence Awareness: Familiarity with leveraging threat intelligence to enhance detection and response capabilities
• Ability to work in an operational environment with flexible working hours and ability to be on call, including nights and weekends
• Education and Certification: Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience

Responsibilities

• Monitor and Analyze Security Alerts: Collaborate with our MDR provider to monitor and review security alerts, conduct initial triage, and analyze potential security incidents
• Incident Investigation and Response: Perform incident investigations as a tier-2+ level analyst by gathering relevant data, conducting analysis, and coordinating responses for incidents affecting internal or customer-facing cloud infrastructure
• Collaborate closely with Enterprise Security and Product Security teams on mitigation strategies and RCA
• Threat Detection and Mitigation: Work with the D&R team and MDR provider to identify, contain, and remediate security threats, with a focus on cloud and network security threats
• Tool Management and Optimization: Support and optimize security tools and platforms (e.g., SIEM, EDR, NDR) to enhance detection capabilities, improve workflows, and reduce false positives
• Documentation and Reporting: Maintain detailed incident documentation and contribute to security reports, dashboards, and metrics to track SOC performance
• Threat Intelligence Integration: Leverage threat intelligence to inform detection and response strategies, working with the MDR provider to implement updated threat indicators
• Continuous Improvement: Contribute to the development of SOC playbooks, incident response procedures, custom detection rules, and best practices for cloud network and security operations

Preferred Qualifications

• Knowledge of IaC tools such as Terraform
• Industry certifications (e.g., CompTIA Security+, AWS Certified Security, GCIH)

Benefits

• 100% of employee premiums and 88% of dependent(s) premiums for medical, dental and vision coverage
• 401(k) match
• Short and long-term disability
• Life/AD&D insurance
• $1,000/year education reimbursement
• Flexible vacation policy
• Outside the US: We offer a comprehensive benefits package which, (subect to regional variations) could include pension, private medical for you and dependents, generous holiday allowance, life assurance, long-term disability, annual wellbeing stipend