Hamilton Barnes
We are seeking a skilled, hands-on Security Operations Lead Engineer to guide the daily operation of our SOC and strengthen our overall security posture. This leader will drive improvements in detection pipelines, incident response, automation, and cloud security while overseeing the security scrum team and maintaining a predictable security roadmap.
Benefits of this Role
Exclusive Team Member Travel Discounts
Affordable Medical Insurance
100% Employer Paid Dental and Vision Insurance
HSA with Company Contribution
401(k)
Basic and Voluntary Life & AD&D
Pet Benefits
Free Parking
Amazing Culture!
Responsibilities
Lead threat detection engineering and end-to-end incident response, including triage, investigation, containment, and remediation.
Manage SIEM / Sentinel content, dashboards, log pipelines, and continuous detection improvements informed by real incidents. Serve as security scrum master, driving sprint cadence, backlog refinement, planning, reviews, and mentoring junior analysts.
Build and maintain security automation and integrations to improve alerting, enrichment, response, and zero‑trust controls across assets.
Operate and tune Fortinet security stack (FortiGate, FortiAnalyzer, FortiClient EMS) while managing firewall policy, segmentation, IPS, and monitoring expansion.
Strengthen Azure identity and cloud security posture while maintaining documentation, runbooks, detection logic, and cross‑team collaboration.
Required Skills
Bachelors degree in cybersecurity, information systems, or related field, or equivalent experience
Three to seven years in SOC, incident response, or security engineering roles
Hands on experience with SIEM platforms, XDR tooling, and log management
Experience tuning alerts, writing detections, and performing investigations
Working knowledge of Azure identity and cloud security controls
Familiarity with Fortinet platforms such as FortiGate, FortiAnalyzer, EMS, and ZTNA
Ability to run scrum ceremonies with consistent cadence
Strong written and verbal communication skills
Must be available for full‑time on‑site work
Scripting experience in PowerShell or Python is a plus
Knowledge of MITRE ATT&CK and threat hunting is a plus
Preferred Qualifications
FCP Security Operations, AZ500 Security Engineer Associate, or GCIH certifications
If this sounds like a fit for you, apply today!
#J-18808-Ljbffr
Benefits of this Role
Exclusive Team Member Travel Discounts
Affordable Medical Insurance
100% Employer Paid Dental and Vision Insurance
HSA with Company Contribution
401(k)
Basic and Voluntary Life & AD&D
Pet Benefits
Free Parking
Amazing Culture!
Responsibilities
Lead threat detection engineering and end-to-end incident response, including triage, investigation, containment, and remediation.
Manage SIEM / Sentinel content, dashboards, log pipelines, and continuous detection improvements informed by real incidents. Serve as security scrum master, driving sprint cadence, backlog refinement, planning, reviews, and mentoring junior analysts.
Build and maintain security automation and integrations to improve alerting, enrichment, response, and zero‑trust controls across assets.
Operate and tune Fortinet security stack (FortiGate, FortiAnalyzer, FortiClient EMS) while managing firewall policy, segmentation, IPS, and monitoring expansion.
Strengthen Azure identity and cloud security posture while maintaining documentation, runbooks, detection logic, and cross‑team collaboration.
Required Skills
Bachelors degree in cybersecurity, information systems, or related field, or equivalent experience
Three to seven years in SOC, incident response, or security engineering roles
Hands on experience with SIEM platforms, XDR tooling, and log management
Experience tuning alerts, writing detections, and performing investigations
Working knowledge of Azure identity and cloud security controls
Familiarity with Fortinet platforms such as FortiGate, FortiAnalyzer, EMS, and ZTNA
Ability to run scrum ceremonies with consistent cadence
Strong written and verbal communication skills
Must be available for full‑time on‑site work
Scripting experience in PowerShell or Python is a plus
Knowledge of MITRE ATT&CK and threat hunting is a plus
Preferred Qualifications
FCP Security Operations, AZ500 Security Engineer Associate, or GCIH certifications
If this sounds like a fit for you, apply today!
#J-18808-Ljbffr