Senior Security Operations Engineer

Summary

Join Onit, a global leader in enterprise workflow solutions, as a Sr. Security Operations Engineer. You will play a key role in securing our Enterprise SaaS applications and corporate infrastructure. This position requires strong technical skills, a passion for technology, and the ability to work independently in a fast-paced environment. You will manage vulnerability testing, implement security tools, define incident response plans, and collaborate with various teams. The ideal candidate possesses extensive experience in cloud security, particularly with AWS, and a strong understanding of security frameworks and tools. This role also involves risk assessments, security awareness programs, and policy development.

Requirements

• Minimum of 5 years of experience in information security, with at least 2 years focused on cloud security
• Proficient in AWS with a strong understanding of AWS networking/VPC, IAM, Security Groups, EC2, RDS, S3, and containers (EKS/ECS)
• Extensive hands-on experience investigating security incidents, along with the creation, management, and execution of security runbooks / playbooks
• Knowledge of various AWS Native Security tools, security frameworks, and CSPM tools
• Experience in security tools such as vulnerability scanners, IDS/IPS, SIEM, firewalls, and endpoint security monitoring
• Experience with threat detection and threat intelligence
• Experience securing large-scale SaaS-based enterprise applications
• Familiarity with security frameworks such as NIST and ISO 27001
• Proficient in Linux
• Strong communication, problem-solving, and collaboration skills

Responsibilities

• Support the Onit security function during US Central Time business hours
• Manage and conduct vulnerability testing, penetration testing, and client security audits
• Implement and manage cloud-native security tools and third-party solutions for threat detection and incident response
• Define, maintain, and execute the Incident Response plan, investigating and resolving incident escalations
• Perform regular risk assessments and vulnerability scans of cloud infrastructure, ensuring timely remediation
• Collaborate with Dev, DevOps, and Infra teams to remediate identified vulnerabilities, discuss security best practices, and assist with security incident response
• Analyze EDR alerts and logs to identify potential security incidents, taking appropriate action
• Continuously evaluate and implement security tools and practices to enhance the security posture of the Onit environment
• Assist with security awareness programs for employees regarding security best practices
• Assist with the development and updates of Security Policies for SOC2 and ISO27001 compliance

Preferred Qualifications

• Certifications such as CCSP, AWS Security, OSCP, or equivalent are preferred
• Experience with Cloudflare and/or AWS WAF configurations
• Experience with AWS Guard Duty and CrowdStrike
• Automation experience with one or more of the following: AWS CLI, Bash, Python, Ansible to verify security configurations and automate runbooks is a plus
• Experience with Microsoft Entra and Mimecast