SecOps Engineer

Summary

Join Picus Security, a leading security validation company, as a SecOps Engineer. You will play a pivotal role in securing and optimizing our SaaS-driven, cloud-first IT infrastructure. Responsibilities include managing and automating security tools, ensuring cloud security best practices, and collaborating with various teams. This role requires hands-on experience in SecOps, cloud security, and security automation, along with proficiency in scripting languages. Picus offers a dynamic environment, unlimited opportunities for career development, global exposure, and the chance to be part of a growing remote team.

Requirements

• Hands-on experience in SecOps, security engineering, or security operations
• Strong expertise in cloud security, security tool management, and automation
• Experience securing SaaS applications and cloud-native services
• Hands-on experience with endpoint security, email security, network security, and security automation tools
• Knowledge of zero-trust security architectures and IAM best practices
• Experience in macOS security hardening and endpoint protection
• Proficiency in Python, Bash, or Terraform for security automation and infrastructure as code (IaC)
• Familiarity with security and compliance standards and frameworks (i.e. NIST, CSA, CIS, ISO27001)
• Ability to collaborate with SOC teams, DevOps, IT, and Engineering teams to enhance security controls
• Strong analytical and troubleshooting skills to optimize security operations and incident response workflows
• A proactive and agile mindset with a strong focus on efficiency, automation, and continuous security improvement

Responsibilities

• Manage and optimize security tools, including EDR/EPP, Cloud Security Services (GuardDuty, WAF, IAM, CloudTrail, Security Hub), VPN, DNS Security, Network Security, Email Security, and SIEM solutions
• Ensure cloud security best practices are implemented
• Automate security configurations and responses using scripting skills to enhance security operations
• Deploy and maintain macOS endpoint security policies, ensuring strong device hardening and zero-trust access controls
• Work closely with SOC teams to fine-tune SIEM/XDR rules and alerts, reducing false positives and improving detection accuracy
• Implement security orchestration and automation (SOAR) to streamline incident response processes
• Conduct regular security assessments, ensuring SaaS applications and cloud services are securely configured
• Support vulnerability management efforts, ensuring timely patching and risk remediation
• Assist in compliance and security audits, ensuring all security tools align with ISO 27001, AICPA SOC 2, CSA, GDPR, and other regulatory requirements
• Develop documentation and security playbooks to guide security operations and best practices

Benefits

• Unlimited opportunity! We are growing. At Picus, you'll be provided with as much responsibility as you can handle - new career development opportunities constantly arise given our rate of growth
• Global exposure - Get a lot of experience working not only in a fast-growing startup but also interact with customers all around the world
• Be part of a global remote team who is taking on Exposure Validation and a growing market segment