Senior Soc Engineer II

Summary

Join Aledade as a Senior SOC Security Engineer II and become a key technical expert in our Security Operations Center (SOC). Lead the design, implementation, and optimization of security monitoring and incident response technologies. Collaborate with SOC analysts and security professionals to enhance threat detection, response, and mitigation. Mentor junior engineers and serve as a subject matter expert on emerging threats and cutting-edge security technologies. This hands-on role requires extensive cybersecurity experience and expertise in SIEM platforms, threat intelligence, and cloud security. Aledade offers a comprehensive benefits package including flexible work schedules, remote work options, health insurance, paid time off, parental leave, and more.

Requirements

• Bachelor’s degree in Computer Science, Information Security, or related field
• Minimum of 7+ years of hands-on experience in cybersecurity, with a strong focus on SOC engineering, threat detection, and incident response
• Expertise in managing and optimizing SIEM platforms (e.g.,Sumo Logic), EDR tools, IDS/IPS, and firewalls
• Hands-on experience in threat intelligence, threat hunting, and advanced log analysis for incident detection and response
• Understanding of security frameworks and methodologies, such as MITRE ATT&CK, NIST, ISO 27001, or CIS Controls
• Familiarity with cloud security tools and techniques for monitoring and securing workloads in AWS, Azure, or GCP environments

Responsibilities

• Engineer and implement security solutions that enhance the SOC’s ability to prevent, detect, and respond to security incidents across cloud environments (AWS, GCP and Azure)
• Lead the design, deployment, and maintenance of security monitoring infrastructure, including SIEM, IDS/IPS, EDR, and firewalls
• Develop and maintain detailed incident response playbooks and procedures, ensuring alignment with industry best practices
• Provide expert analysis of security events, correlating data from various sources (network, endpoint, application) to gain a holistic view of potential threats
• Assist in containment and remediation strategies for cyber incidents, coordinating with internal teams to ensure swift resolution
• Mentor and provide guidance to junior SOC engineers and analysts, helping them develop their technical skills and grow in their roles

Preferred Qualifications

• In-depth knowledge of security operations, including SIEM, EDR, IDS/IPS, malware analysis, and vulnerability management tools
• Experience working with cloud security technologies (AWS, Azure, GCP), including monitoring, logging, and incident response in cloud environments
• Experience in developing and deploying automation scripts (e.g., Python, PowerShell) to perform routine tasks such as log analysis, threat detection, and incident response
• Act as the technical lead in investigating, analyzing, and responding to complex security incidents and remediation efforts
• Experience in evaluating new security technologies and making recommendations to enhance the organization’s defensive capabilities
• Hands-on experience in malware analysis, reverse engineering, and digital forensics
• Experience in advanced log and network traffic analysis to identify security incidents, trends, and anomalous behaviors
• Certifications such as CISSP, GCIH, GCIA, CEH, OSCP, or GIAC are preferred

Benefits

• Flexible work schedules and the ability to work remotely are available for many roles
• Health, dental and vision insurance paid up to 80% for employees, dependents, and domestic partners
• Robust time off plan 21 days of PTO in your first year
• 2 Paid Volunteer Days & 11 paid holidays
• 12 weeks paid Parental Leave for all new parents
• 6 weeks paid sabbatical after 6 years of service
• Educational Assistant Program & Clinical Employee Reimbursement Program
• 401(K) with up to 4% match
• Stock options