Security Engineer, Incident Response

Summary

Join LTK's Security Operations team as a Security Operations Engineer to protect our infrastructure, data, and users. This remote-friendly position requires hands-on incident response (IR) experience, strong analytical skills, and a passion for security. You will monitor security events, support incident response, implement security measures, create and maintain policies, improve detection and response processes, communicate risks, perform threat hunting, conduct root cause analysis, track incident metrics, stay current on best practices, participate in on-call rotation, drive automation, support vulnerability remediation, assist with audits, and develop security training. The ideal candidate has 3+ years of experience in security operations or incident response, experience with SIEM tools (like Splunk), strong problem-solving skills, remote work experience, and a growth mindset. Industry certifications are a plus. LTK offers competitive compensation and benefits, including 401k matching, medical, vision, and dental insurance, paid parental leave, Summer Fridays, and flexible PTO.

Requirements

• 3+ years of experience in a security operations or incident response role
• Experience with SIEM tools similar to Splunk, ELK, log analysis, and triaging alerts
• Strong problem-solving skills and the ability to make decisions under pressure
• Remote work experience and ability to collaborate effectively across time zones
• Take initiative to learn, be open to feedback, and have a strong growth mindset

Responsibilities

• Monitor security events and incidents to detect potential threats and vulnerabilities using tools like Splunk and other SIEM platforms
• Support response to security incidents and manage the incident response process end-to-end
• Implement and monitor security measures to protect LTK’s infrastructure and assets
• Create and maintain incident response policies, standards, and runbooks
• Continuously improve detection and response processes to strengthen investigations and remediation
• Communicate risk and impact to engineering and business leaders to drive fast and effective remediation
• Perform proactive threat hunting based on internal telemetry and threat intelligence
• Conduct root cause analysis (RCA) and post-incident reviews to drive learning and improvement
• Track and report on incident metrics to improve response plans and identify gaps
• Stay current on emerging threats, vulnerabilities, and incident response and detection best practices
• Participate in the on-call rotation for security incident handling
• Drive automation and tool integration to scale security operations
• Support vulnerability remediation efforts in partnership with engineering and infrastructure teams
• Assist with audits and assessments to meet regulatory and compliance requirements
• Develop and conduct security incident training, including tabletop exercises and dry runs

Preferred Qualifications

Industry certifications such as GCIH, GCFA, Security+, or equivalent are a plus

Benefits

• Competitive compensation and benefits package to meet the needs of you and your family
• 401(k) with LTK company matching
• Medical Insurance, Vision Insurance, Dental Insurance
• Paid Maternity Leave and Paid Paternity Leave
• Summer Fridays and Flexible PTO