Security Engineer

Our SecOps team is seeking a mid-to-senior level Security Engineer to support our enterprise-wide cybersecurity operations. The selected individual will focus on implementing and managing security tooling infrastructure, particularly Splunk and CrowdStrike, to support the team's security operations and incident response capabilities

This is a hands-on role centered on threat detection, incident response, and detection engineering. If selected, you will act as a key defender of the enterprise, partnering with infrastructure and application teams to remediate findings, tune alerting logic, and ensure our security posture remains resilient against evolving threats.

Role

• Set up and maintain Splunk and CrowdStrike infrastructure.
• Implement, configure, and maintain SIEM, EDR/XDR, and Email Security platforms.
• Implement log and source types in SIEM tools.
• Lead incident response activities including containment, remediation, and post-incident root cause analysis.
• Support Zero Trust architecture initiatives, focusing on identity-centric access and continuous validation.
• Collaborate across the organization to validate security controls for compliance with NIST, ISO 27001, and SOX.
• Develop and tune detection logic and alert thresholds to reduce "noise" and improve high-fidelity alerting.
• Maintain and improve incident response procedures, playbooks, and operational runbooks.
• Handle escalated security incidents after Tier 1 triage.
• Participate in a rotating 24x7 on-call schedule for critical incident response.

Qualifications

Seeking a candidate with at least five years’ experience securing Cloud and Hybrid environments in enterprise environments, building deep hands-on experience with Splunk and CrowdStrike tools and other endpoint and network security technologies.

Required Experience

• Incident investigation and remediation in complex, distributed environments.
• Log analysis, alert triage, and threat detection.
• Ability to develop and tune detection rules and alert logic.
• Understanding of Zero Trust architecture (identity-centric access, continuous validation).
• Creating and maintaining runbooks, playbooks, and procedures.
• Solid understanding of complex security frameworks (NIST, CIS, ISO) and incident response processes.

Preferred

• Relevant certifications such as CompTIA Security , CISSP, GCIH, or cloud-specific security certifications.
• Experience with SOAR tools or security automation scripting.
• Experience with threat hunting and advanced detection engineering.

Details

• Location: Tampa, FL
• Hybrid: 2 Days In-Office
• Direct Hire Salary up to $125,000 for highly qualified individuals.

Cannot consider non-immigrant visa holders (H1b, H4, F1, etc.).

No third part candidates will be considered