Coalfire · 3 weeks ago
Senior Security Engineer (SIEM SPLUNK)
United States
Full-time
Hybrid
Mid, Senior Level
$78K/yr - $135K/yr
4+ years expCoalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. As a Senior Security Engineer (SIEM engineer), you will provide operational support of Vulnerability Management processes for clients with regulatory compliance requirements, working within major public clouds and utilizing your technical abilities to monitor vulnerabilities and recommend remediation.
Responsibilities
Join a highly collaborative security operations team delivering vulnerability management services to Cloud Service Providers, and other organizations operating highly regulated environments
Review vulnerabilities and data from various sources (e.g., penetration testing, vulnerability scanning) across different technologies and environments to assess the risk level to business assets
Conduct recurring and on-demand OS/DB & Web scanning activities for multiple customer environments
Build, configure, and manage vulnerability management tools within customer environments, serving as the subject matter expert for vulnerability management queries
Assist customers with scanning their FedRamp environment, establishing standards, and managing false positives and exceptions
Utilize customer scan data to create a Plan of Action and Milestones (POAM) for regular delivery to customers
Communicate with internal management to provide insights into the current risk posed by vulnerabilities in customer environments and proposed remediation strategies
This position will be the liaison between the vulnerability management team and various SRE teams and customer teams and must be able to provide technical remediation details or workarounds, help track and identify asset inventory, log work tickets and exceptions and research vulnerability findings
Develop and maintain standard operating procedures, training documents, technical documentation, and troubleshooting guidelines for security solutions
Configure and troubleshoot scanning devices and resolve agent & authentication issue
Implement technical solutions to automate repetitive tasks
Provide guidance, instruction, and thought leadership to clients and team members
Manage and follow up on tickets and customer requests
Work independently and with vendors’ professional services to diagnose and troubleshoot any issues with vulnerability assessment tools
Provide oversight and orchestrate key parties from Coalfire and client teams during escalations with a focus on expedited resolution
Provide analysis of Information Security vulnerabilities and determine true or false positive, and work with appropriate teams for remediation
Analyze identified vulnerabilities to identify false positives or environmental factors that affect the risk scoring and ensure the POAM is updated to reflect that analysis
Qualification
Required
Previous experience supporting clients from within a managed service organization
Experience with ITSM solutions such as Jira and ServiceNow and delivering to SLAs
4-6 years of related experience in professional services, vulnerability management, and compliance monitoring
Must be skilled in web application testing, API testing, and network testing
Prior experience working with Burp Suite Professional, or other similar DAST tools
Proficiency in scripting, such as Python and/or PowerShell
1-2 years developing playbooks, runbooks, and troubleshooting technical issues
Good understanding of Windows and Linux patching
Knowledge of vulnerability scoring systems (CVSS/CMSS)
Experience with building, configuring, and managing vulnerability scanning tools (Nessus/Burp Suite preferred)
Experience analyzing vulnerabilities and adjusting the risk rating/severity dependent on internal factors
Experience defining Operating System Baseline Configuration standards such as the Center for Internet Security (CIS) Critical Security Controls Scanning within various scanning technologies and working with appropriate teams to remediate and report on the results
Excellent communication, organizational, and problem-solving skills in a dynamic environment
Experience working with Internal and External Auditors to ensure that documented controls / policies/ and standards are being adhered to
Effective documentation skills, including technical diagrams and written descriptions
Ability to work independently and as part of a team with a professional attitude and demeanor
Critical thinking, and ability to balance security requirements with mission needs
BS or above in a related Information Technology field or equivalent combination of education and experience
Preferred
Previous experience supporting 24x7x365 security operations for a SaaS vendor
Certifications in Cloud Vendors, as well as with organizations such as PMP, CISSP, CISM, or CISA
Familiarity with frameworks such as FedRAMP, FISMA, SOC, ISO, HIPAA, HITRUST, PCI, etc
Benefits
Paid parental leave
Flexible time off
Certification and training reimbursement
Digital mental health and wellbeing support membership
Comprehensive insurance options
Company
Coalfire
Coalfire is the premier Cybersecurity and Compliance Services leader for the tech, healthcare, and finance industries.
Founded in 2001Chicago, Illinois, US
1001-5000 employees
H1B Sponsorship
Coalfire has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (3)
2024 (4)
2023 (3)
2022 (6)
2021 (2)
2020 (4)
Funding
Current Stage
Late StageLeadership Team
Tom McAndrew
CEO
Merri Chandler
Chief Financial Officer
Company data provided by crunchbase