Security Operations Engineer

Job description

We are seeking a Security Operations Engineer with a builder’s mindset to join our team. In this role, you will bridge the gap between Security and Engineering, partnering with our engineering teams to consolidate our logging and build a unified observability platform (logs, metrics, synthetics). You will be the primary architect of our detection logic, responsible for implementing our new SIEM and transforming raw data into high-fidelity alerts. While you will not be the sole monitor of our environment, you will serve as the technical escalation point for our MDR provider (Sophos) and the primary owner of our incident response framework—building the runbooks, playbooks, and triage guides that define how we respond to threats. This is a unique opportunity for an experienced professional to step up from day-to-day analysis and own the design and implementation of a modern detection and response program. WHAT YOU'LL DO: SIEM Implementation & Detection Engineering - Serve as the primary implementer for the new SIEM solution, configuring data ingestion and tuning the platform for optimal performance. - Own the security observability platform on Grafana (Loki/LogQL, Prometheus/PromQL, G...