Senior SecOps Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

RethinkFirst · 2 months ago

Senior SecOps Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
date8+ years exp

Rethink First is a leading behavioral health technology company focused on making mental wellness accessible and scalable. They are seeking a Senior Security Operations (SecOps) Engineer to enhance the company's operational security, automate processes, and ensure effective incident response.

Clinical TrialsHealth CareHealth Diagnostics
check
H1B Sponsor Likelynote

Responsibilities

Design, build, and maintain automation workflows to eliminate manual SecOps tasks (Python, PowerShell, APIs, orchestration tools)
Integrate data and events from multiple sources (EDR, SIEM, cloud logs, vulnerability scanners, identity systems) to enhance visibility and context
Develop reusable scripts, playbooks, and evidence collection automations to support compliance and incident response via aggregation tools and dashboarding
Serve as the primary technical interface between our internal team and the managed SOC provider
Continuously refine alert logic, escalation paths, and severity classifications to reduce false positives
Review and validate detections, ensuring coverage aligns with the company’s threat model and risk priorities
Provide feedback and data to the SOC to tune detections and automate enrichment processes
Conduct after-action reviews with the SOC to improve handoffs and documentation quality
Lead internal investigation and response when incidents are escalated from the SOC
Build and maintain playbooks and runbooks for repeatable, automated responses
Coordinate containment, root cause analysis, and lessons learned with cross-functional teams
Perform post-incident analysis to improve detection rules and reduce future alert fatigue
Manage the vulnerability lifecycle — scanning, prioritization, and coordination of remediation across IT and Engineering
Correlate vulnerabilities with asset ownership and exposure context using automation
Track and report remediation SLAs and provide risk-based metrics to leadership
Partner with DevOps and engineering to implement automated guardrails and least-privilege IAM policies
Conduct reviews of cloud configurations (AWS, Azure, GCP) and recommend automated controls
Build event-driven detection and response functions using cloud-native tools
Work closely with Compliance to provide evidence for audits (SOC 2, HITRUST)
Mentor junior security team members and offshore resources in automation, scripting, and incident response
Advocate for 'build once, automate forever' within security operations

Qualification

Security AutomationIncident ResponseCloud SecurityScriptingAutomationSIEMEDRVulnerability ManagementCollaboration with SOCAnalytical SkillsCommunication SkillsMentorship

Required

8+ years of experience in SecOps, DevOps, security engineering, or software development with an automation focus in SaaS environments
Proficient in scripting and automation (Python, PowerShell, etc) and integrating with APIs
Experience managing or collaborating with a managed security provider (MSSP/MDR/SOC)
Strong grasp of SIEM and EDR ecosystems, including alert tuning and log analysis
Familiarity with cloud security (AWS, Azure) and infrastructure-as-code concepts
Excellent analytical, communication, and documentation skills

Preferred

Background in software or application development before transitioning into security
Experience building integrations between security tools and Jira, Teams, ticketing systems and with CAASM tools that automate inventory, gap-detection, and enforcement (Axonius, JupiterOne)
Knowledge of ERD/vulnerability management tools (Tenable, Defender, Crowdstrike Falcon)
Experience in regulated environments (HIPAA, SOC 2, HITRUST)
Certifications such as CISSP, GCIH, GCIA, or AWS, Azure security specialty are a plus

Benefits

Generous health, dental, & vision benefits package
Flexible paid time off
11 paid company holidays
401k + matching
Parental leave
Access to our award-winning RethinkCare platform supporting neurodiversity in the workplace through parental success, professional resilience, and personal wellbeing.

Company

RethinkFirst

twittertwittertwitter
company-logo
RethinkFirst is a provider of Analysis-based treatment tools for the growing population affected by autism spectrum disorders.
dateFounded in 2008
location
New York, New York, USA
people-size201-500 employees
web-link
http://www.rethinkfirst.com/

H1B Sponsorship

RethinkFirst has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2)
2021 (1)
2020 (3)

Funding

Current Stage
Growth Stage
Total Funding
$12.41M
2020-08-11Private Equity
2014-08-18Series C· $10M
2011-04-01Series B

Leadership Team

leader-logo
Ben Semmes
Chief Executive Officer
linkedin
leader-logo
Eric Larsson
Chief Financial Officer
linkedin

Recent News

PR Newswire
61% of BCBAs Say Administrative Tasks are Diverting Attention From Patient Care, New RethinkBH Survey Finds
2025-11-07
PR Newswire
RethinkFirst Appoints Eric Larsson as Chief Financial Officer
2025-10-07
PR Newswire
RethinkEd Launches NavigatED and LifeEd to Strengthen Student Growth and Readiness
2025-09-10
Company data provided by crunchbase