HanaByte · 4 hours ago

SecOps Engineer (Google SecOps)

United States

Full-time

Remote

Entry, Mid Level

$75K/yr - $125K/yr

2+ years exp

Maximize your interview chances

ConsultingCyber Security

Hiring Manager

Kattariya (Kat) Evans

Insider Connection @HanaByte

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Provide SIEM engineering services for clients who are migrating to or looking to adopt SIEM systems, primarily focused on Google SecOps (formerly known as Google Chronicle).

Integrate multiple data sources from GCP services, on-premises systems, and third-party applications into the SIEM using cloud connectors and syslog feeds.

Utilize Google SecOps UDM and consult customers in data transformation for SIEM ingestion. This includes implementing custom parsers to transform logs into structured information.

Familiarity with log management and data routing tools such as Cribl.

Automate routine security tasks using Infrastructure as Code (IaC), APIs, and serverless technologies, enhancing efficiency and reducing manual effort.

Advise clients on security architecture design, specifically around GCP services (Compute Engine, GKE, Cloud Storage, etc.) to ensure compliance and resilience.

Assist with developing and implementing security best practices aligned with frameworks like CIS Benchmarks, NIST 800-53, ISO 27001, PCI DSS, CMMC, and FedRAMP.

Engage with clients to understand their security objectives, scope requirements, and business drivers.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Google SecOps / ChronicleSIEM engineeringGoogle Cloud servicesSecurity certificationsNetworking conceptsSystem administrationCloud-native security principlesSecurity toolingInfrastructure as Code (IaC)APIsServerless technologiesCIS BenchmarksNIST 800-53ISO 27001PCI DSSCMMCFedRAMPCloud LoggingCloud FunctionsIAMCribl

Required

2-5+ years of experience in Security Engineering, preference will be given to a background with a focus on SIEM engineering and Security Operations.

Hands-on experience deploying, managing, or tuning SIEM platforms (e.g., Google SecOps / Chronicle, Splunk, QRadar, or Azure Sentinel) in production environments.

Strong understanding of networking concepts, system administration, cloud-native security principles, and modern cyber-threat landscapes.

Demonstrable proficiency with Google Cloud services, security tooling, and related APIs (e.g., Security Command Center, IAM, Cloud Logging, Cloud Functions).

Certification in Google Cloud (e.g., Google Cloud Professional Cloud Security Engineer) or ability to gain the certification in a mutually discussed time frame.

Ability to prioritize tasks effectively and handle multiple client engagements concurrently.

Bachelor’s degree, comparable military duty, or comparable work experience.