Reinsurance Group Of America, Incorporated
Lead SOC Engineer - Security Telemetry & Detection Platforms
Reinsurance Group Of America, Incorporated, Creve Coeur, Missouri, United States
You desire impactful work.
You’re
RGA ready
RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 500 Company and listed among its World's Most Admired Companies, we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.
Leads efforts to design, implement, and maintain the security monitoring infrastructure supporting global SOC operations. Focuses on engineering and optimizing SOC tooling—particularly Splunk Cloud, Cribl Cloud, and CrowdStrike Falcon—to ensure high-fidelity detection, efficient data pipelines, and rapid incident response. Serves as a technical lead and mentor, driving innovation and operational excellence in security monitoring and threat detection solutions.
Principle Duties
Lead the engineering and optimization of SOC platforms, including Splunk Cloud for SIEM, Cribl Cloud for data routing and enrichment, and CrowdStrike Falcon for endpoint detection and response (EDR).
Design, implement and maintain role based access controls, permissions and user provisioning to ensure least privilege and separation of duties for security solutions.
Develop and maintain data ingestion pipelines using Cribl to ensure efficient, cost-effective, and secure log routing to Splunk Cloud and other destinations.
Tune and maintain detection content to reduce false positives and improve signal-to-noise ratio in collaboration with security operations, threat intelligence, and incident response teams.
Serve as a subject matter expert for SOC tooling, providing guidance and mentorship to junior engineers and analysts.
Collaborate with security architects and infrastructure teams to ensure telemetry coverage across cloud, endpoint, and network environments.
Participate in security incident response activities, providing tooling support, log analysis, and root cause investigation.
Evaluate and integrate new security technologies to enhance detection, visibility, and response capabilities.
Ensure compliance with internal security policies and external regulatory requirements through proper logging, monitoring, and alerting practices.
Continuously monitor and improve SOC engineering processes, including automation, playbook development, and tool integration.
Stay current with industry trends, threat actor TTPs, and emerging technologies to ensure security solutions remain proactive and resilient.
Lead and guide a small SOC engineering team, providing technical direction, project leadership, and innovative solutions to deliver high-quality security services.
Mentor and support team members, fostering skill development, collaboration, and a positive, inclusive team culture.
Coordinate resources and priorities to ensure successful execution of projects and alignment with organizational goals.
Perform supervisory duties, including mentoring and coaching associates within the team.
Participate in the development and implementation of strategic and long-term goals for SOC engineering.
Develop and maintain an on-call engagement and escalation model to ensure rapid response to operational issues and outages.
Education
Bachelor’s Degree in Arts/Sciences (BA/BS) or equivalent experience - Required
Required Experience, Skills and Abilities
6+ years experience in information systems.
Advanced oral and written communication skills demonstrating ability to share and impart knowledge
Ability to quickly adapt to new methods, work under tight deadlines and stressful conditions
Advanced investigative, analytical and problem solving skills
Advanced ability to set goals and handle multiple tasks, clients, and projects simultaneously
Ability to appropriately balance priorities, deadlines, and deliverables
Ability to work well within a team environment and participate in department/team projects
Ability to balance detail with departmental goals/objectives
Advanced ability to translate business needs and problems into viable/accepted solutions
What you can expect from RGA:
Gain valuable knowledge from and experience with diverse, caring colleagues around the world.
Enjoy a respectful, welcoming environment that fosters individuality and encourages pioneering thought.
Join the bright and creative minds of RGA, and experience vast, endless career potential.
Compensation Range: $123,500.00 - $184,050.00 Annual
Base pay varies depending on job-related knowledge, skills, experience and market location. In addition, RGA provides an annual bonus plan that includes all roles and some positions are eligible for participation in our long‑term equity incentive plan. RGA also maintains a full range of health, retirement, and other employee benefits.
RGA is an equal opportunity employer. Qualified applicants will be considered without regard to race, color, age, gender identity or expression, sex, disability, veteran status, religion, national origin, or any other characteristic protected by applicable equal employment opportunity laws.
#J-18808-Ljbffr
You’re
RGA ready
RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 500 Company and listed among its World's Most Admired Companies, we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.
Leads efforts to design, implement, and maintain the security monitoring infrastructure supporting global SOC operations. Focuses on engineering and optimizing SOC tooling—particularly Splunk Cloud, Cribl Cloud, and CrowdStrike Falcon—to ensure high-fidelity detection, efficient data pipelines, and rapid incident response. Serves as a technical lead and mentor, driving innovation and operational excellence in security monitoring and threat detection solutions.
Principle Duties
Lead the engineering and optimization of SOC platforms, including Splunk Cloud for SIEM, Cribl Cloud for data routing and enrichment, and CrowdStrike Falcon for endpoint detection and response (EDR).
Design, implement and maintain role based access controls, permissions and user provisioning to ensure least privilege and separation of duties for security solutions.
Develop and maintain data ingestion pipelines using Cribl to ensure efficient, cost-effective, and secure log routing to Splunk Cloud and other destinations.
Tune and maintain detection content to reduce false positives and improve signal-to-noise ratio in collaboration with security operations, threat intelligence, and incident response teams.
Serve as a subject matter expert for SOC tooling, providing guidance and mentorship to junior engineers and analysts.
Collaborate with security architects and infrastructure teams to ensure telemetry coverage across cloud, endpoint, and network environments.
Participate in security incident response activities, providing tooling support, log analysis, and root cause investigation.
Evaluate and integrate new security technologies to enhance detection, visibility, and response capabilities.
Ensure compliance with internal security policies and external regulatory requirements through proper logging, monitoring, and alerting practices.
Continuously monitor and improve SOC engineering processes, including automation, playbook development, and tool integration.
Stay current with industry trends, threat actor TTPs, and emerging technologies to ensure security solutions remain proactive and resilient.
Lead and guide a small SOC engineering team, providing technical direction, project leadership, and innovative solutions to deliver high-quality security services.
Mentor and support team members, fostering skill development, collaboration, and a positive, inclusive team culture.
Coordinate resources and priorities to ensure successful execution of projects and alignment with organizational goals.
Perform supervisory duties, including mentoring and coaching associates within the team.
Participate in the development and implementation of strategic and long-term goals for SOC engineering.
Develop and maintain an on-call engagement and escalation model to ensure rapid response to operational issues and outages.
Education
Bachelor’s Degree in Arts/Sciences (BA/BS) or equivalent experience - Required
Required Experience, Skills and Abilities
6+ years experience in information systems.
Advanced oral and written communication skills demonstrating ability to share and impart knowledge
Ability to quickly adapt to new methods, work under tight deadlines and stressful conditions
Advanced investigative, analytical and problem solving skills
Advanced ability to set goals and handle multiple tasks, clients, and projects simultaneously
Ability to appropriately balance priorities, deadlines, and deliverables
Ability to work well within a team environment and participate in department/team projects
Ability to balance detail with departmental goals/objectives
Advanced ability to translate business needs and problems into viable/accepted solutions
What you can expect from RGA:
Gain valuable knowledge from and experience with diverse, caring colleagues around the world.
Enjoy a respectful, welcoming environment that fosters individuality and encourages pioneering thought.
Join the bright and creative minds of RGA, and experience vast, endless career potential.
Compensation Range: $123,500.00 - $184,050.00 Annual
Base pay varies depending on job-related knowledge, skills, experience and market location. In addition, RGA provides an annual bonus plan that includes all roles and some positions are eligible for participation in our long‑term equity incentive plan. RGA also maintains a full range of health, retirement, and other employee benefits.
RGA is an equal opportunity employer. Qualified applicants will be considered without regard to race, color, age, gender identity or expression, sex, disability, veteran status, religion, national origin, or any other characteristic protected by applicable equal employment opportunity laws.
#J-18808-Ljbffr