Apply on Employer Site

Semperis · 22 hours ago

Security Engineer

Addison, TX

Full-time

Hybrid

Senior Level

5+ years exp

Semperis is a rapidly growing cybersecurity company recognized for its innovative approach and great workplace culture. They are seeking an experienced Security Engineer to join their security operations team, focusing on detection and response to ensure the security of their infrastructure against malicious threats.

Cyber SecurityEnterprise SoftwareIdentity ManagementInformation Technology

No H1B

U.S. Citizen Only

Hiring Manager

Anna Taylor

Responsibilities

Collaborate with different teams for building and setting up pipelines needed to gather relevant security telemetry

Build and maintain an effective and scalable security monitoring infrastructure solution

Develop detection strategies to identify anomalous activity and ensure that our critical infrastructure and services operate in a safe environment

Triage alerts and drive security incidents to closure while reducing their potential impact to Semperis

Build processes and workflows to triage security alerts and respond to real incidents

Research new threat attack vectors and ensure that our detection and response capability is in line with the current threat landscape

Proactively improve the quality of our detection rules and strive to eliminate classes of issues by working directly with engineering teams

Contribute to strategy, risk management, and prioritization for all efforts around detection and response

Collaborate with the compliance team to maintain and audit security controls and processes, ensure compliance with relevant security frameworks and certifications

Pragmatic implementing business-focused controls to safeguard the company´s multi-cloud entities

Qualification

Security incident detectionIncident response practicesTelemetry solutionsSIEMSOAR platformsCNAPP platformsScripting in PythonAutomation toolsIAM analysisManaging prioritiesDevOps practicesCloud deploymentsDecision-makingCross-functional collaboration

Required

US Citizenship required

5+ years of relevant industry experience

Strong domain knowledge in security incident detection and response, with a proven ability to operate, optimize, and enhance the effectiveness of the Security Operations Center (SOC)

Demonstrated experience with effective incident response and containment practices, preferably in a cloud-first environment

Hands-on experience in instrumenting and deploying telemetry solutions

Experience with operating open-source and/or commercial solutions for logging and security event management, including SIEM and SOAR platforms such as Splunk, Microsoft Sentinel, SolarWinds, Trellix, and similar tools

Experience in managing and fine tuning CNAPP platforms such as WIZ, Orca, Defender, Singularity or other similar solutions

Ability to script or code fluently in an interpreted language like Python, PowerShell or Javascript

Proficiency in automation using tools such as Logic Apps, Azure Functions, AWS Lambda, and Runbooks

Strong experience in analyzing IAM configurations and entities behavior across multi-cloud and multi-account environments, detecting potential breaches, identifying security gaps, and responding to threats in real time

Decision-maker with the ability to operate with freedom and autonomy

Experience working with distributed teams and other cross-functional stakeholders

Ability to manage competing priorities and workload