Senior Security Engineer, Operations

Summary

Join Oscar's Security team as a Senior Security Engineer, Operations! You will be responsible for enhancing our SIEM alert ecosystem, developing playbooks, and leading incident response efforts. Leverage data streams to create high-fidelity alerts and mentor the team. This role requires experience with SIEM, SOAR, and security automation. You'll collaborate with other teams and research emerging security threats. The position offers a blended work culture with remote options and a competitive salary and benefits package.

Requirements

• 3+ years experience in security engineering or technical related role, focused on security operations
• Deep understanding of security concepts, including network security, endpoint security, vulnerability management, and incident response
• Hands on experience with security information and event management (SIEM) systems
• Experience with security automation and orchestration tools
• Proficiency in scripting languages (e.g., Python, PowerShell, Bash)

Responsibilities

• Design, implement, and maintain security monitoring and detection systems, including SIEM, SOAR, and XDR platforms
• Develop and implement security automation workflows to improve security operations and incident response processes
• Enhance security visibility by implementing robust logging and alerting mechanisms across the environment
• Identify and improve security vulnerabilities and misconfigurations
• Lead incident response efforts, including containment, eradication, and postincident analysis
• Collaborate with other teams to integrate security best practices into their workflows
• Research emerging security technologies and threats
• Mentor junior security engineers
• Contribute to the development and maintenance of security policies and procedures
• Participate in on-call rotation for security incidents
• Compliance with all applicable laws and regulations
• Other duties as assigned

Preferred Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field
• Experience with Palo Alto Networks Cortex XDR and XSIAM
• Experience with security orchestration, automation, and response (SOAR) platforms, specifically Palo Alto Networks XSOAR or Tines
• Experience with cloud security platforms (AWS, Azure, GCP)
• Industry certifications (e.g., CISSP, SANS GIAC)
• Experience with threat intelligence platforms and feeds
• Knowledge of regulatory compliance frameworks (e.g., NIST, ISO 27001, SOC 2)

Benefits

• Medical, dental, and vision benefits
• 11 paid holidays
• Paid sick time
• Paid parental leave
• 401(k) plan participation
• Life and disability insurance
• Paid wellness time and reimbursements