SecOps Observability Engineer

Summary

Join GuidePoint Security, a rapidly growing cybersecurity firm, and contribute to protecting some of the nation’s top organizations. As a key member of the team, you will leverage your expertise in observability products like SIEM and SOAR to detect and respond to security threats. You will be responsible for setting up and tuning alerts, managing logs, and ensuring the smooth integration of various data sources into observability platforms. Your experience in a Security Operations Center (SOC) and strong communication skills will be essential for collaborating with internal and external stakeholders. GuidePoint offers a remote-work environment, comprehensive benefits including health insurance, retirement plans, paid time off, and various other perks. This is a unique opportunity to advance your career with a leading cybersecurity company.

Requirements

• Hands-on experience with observability products such as SIEM (Security Information & Event Management, SOAR (Security Orchestration, Automation, and Response), and data stream management tools like Cribl
• In-depth knowledge of log management, monitoring, and alerting techniques
• Experience with setting up, modifying, and tuning alerts within the SIEM to ensure critical threats are identified properly
• Understanding data ingestion, transformation, and enrichment workflows for integrating various log sources, network telemetry, and security event data into observability platforms
• Ability to work with and understand log parsing, aggregation, and normalization
• Proven track record working in a Security Operations Center (SOC), with direct involvement in threat detection, incident response, and security event monitoring. Strong understanding of SOC workflows and processes
• Ability to communicate strongly and efficiently within the SOC. Must be able to collaborate with internal stakeholders and external vendors
• Comfortable producing clear, concise reports and documentation related to security incidents and system performance
• Bachelor’s degree in a relevant discipline or equivalent experience
• Minimum 4 years in an enterprise level security consultative role building and assessing Information Security architectures and programs

Preferred Qualifications

• Experience with one or more products: Observo, Tableau, CrowdStrike NG-SIEM, Splunk, Google SecOps, Palo Alto XSIAM, Elastic, etc
• Prior experience in a corporate operational or technical leadership role

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option