Remote Security Engineer (SIEM/SOAR)

Summary

Join GuidePoint Security, a rapidly growing and profitable value-added reseller that focuses exclusively on Information Security. As a SIEM/SOAR Solutions Engineer, you will provide trusted cybersecurity expertise to organizations, helping them identify threats, optimize resources, and integrate best-fit solutions.

Requirements

• 1-2 years of experience
• Proficiency developing log ingestion and aggregation strategies
• Expertise developing security-focused content for one more more SIEM platforms, including creation of complex threat detection logic and operational dashboards
• Familiarity with key security events on common IT platforms
• Deep proficiency in client and server operating systems including Windows, Mac, and Linux
• General networking and security troubleshooting (firewalls, routing, NAT, etc.)
• Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
• Ability to autonomously prioritize and successfully deliver across a portfolio of projects

Responsibilities

• 1-2 years of architecture, implementation, and troubleshooting experience with one or more SIEM/SOAR solutions
• Proficiency developing log ingestion and aggregation strategies
• Expertise developing security-focused content for one more more SIEM platforms, including creation of complex threat detection logic and operational dashboards
• Familiarity with key security events on common IT platforms
• Deep proficiency in client and server operating systems including Windows, Mac, and Linux
• General networking and security troubleshooting (firewalls, routing, NAT, etc.)
• Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
• Ability to autonomously prioritize and successfully deliver across a portfolio of projects

Preferred Qualifications

• Experience with platforms such as Ansible, Puppet, Chef, Terraform and SaltStack
• Experience with other Information Security solutions including CrowdStrike, SentinelOne, ZScaler, Palo Alto Networks, Check Point, Microsoft Defender products, Carbon Black, Splunk, and/or Cisco
• Experience authoring security runbooks, policy, and best practice documentation
• Bachelor’s degree in a relevant discipline or equivalent professional experience

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
• 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option