Guidehouse
Our Security Engineer Lead plays a pivotal role within the Information Security Operations group, supporting Security Operations, Incident Management/Response processes, SIEM engineering, Threat Hunting, Automation, Cyber Architecture, and Threat Intelligence.
This position is responsible for enhancing SIEM and monitoring tools, tuning, detection, and alerting across multiple domains to support cyber incident response capabilities. The goal is to identify, analyze, and mitigate security threats across the Guidehouse environment, protecting data within systems, networks, and cloud environments.
You will mentor and collaborate with SOC analysts to improve detection techniques and SecOps technologies. You may also participate in IT Security projects to enhance capabilities, improve monitoring, and drive detection and threat hunting efforts, thereby improving enterprise cybersecurity posture.
The successful candidate applies technical knowledge and experience to drive innovation and performance, demonstrating critical thinking, problem-solving, and logical assessment of problems and opportunities. This position reports to the IT Security Information Protection Associate Director.
Job Function :
Solid understanding of platform, network, application, and cloud security fundamentals, threats, attack techniques, and mitigations Knowledge of cybersecurity concepts and network/web protocols Designs and configures monitoring and alerts using SIEM, Azure Purview, Defender, CSPM, etc. Experience with SIEMs, SOAR technologies, IR tools, scripting, threat hunting, detection engineering, and tuning. Effective communication skills, professional and timely delivery Produces high-quality work leveraging templates, tools, and methodologies Conveys complex messages clearly to IT Security Operations team Identifies risks and escalates appropriately Assists with issue resolution, risk mitigation, and contingency planning Uses critical thinking and collaboration for technical solutions Works in unstructured circumstances Mentors and trains IT Security staff, fostering a culture of excellence and continuous learning Develops technical knowledge and skills within the team Takes ownership of tasks, resolving issues proactively Maintains professional representation of the company Proposes solutions based on experience, focusing team efforts Builds trust with stakeholders by meeting needs and expectations Stays current on cybersecurity trends and issues Maps issues to policies, procedures, and standards, identifying system and process improvements Works independently on complex projects, influencing internal and external parties Applies standards, principles, and technical concepts effectively What You Will Need :
Bachelor’s degree with 6 years of experience, or 10+ years of experience without a degree Availability to work East Coast US hours Experience supporting Windows OS, Azure, M365, and SIEMs like Splunk or Sentinel Knowledge of MITRE ATT&CK framework Experience with SOCs, NIST standards, and security analysis Proficiency in query languages like SPL or KQL Ability to manage multiple priorities and meet deadlines What Would Be Nice To Have :
Experience with AWS/Azure cloud services Degree in a cyber-related field Knowledge of NIST standards and security areas like application security, threat intelligence, incident response Experience with vulnerability management and risk assessment Understanding of adversary TTPs Experience with executive communication and security clearances Certifications such as CISSP, OSCP, CEH, Security+ Experience with firewalls, incident response, and security infrastructure Knowledge of Active Directory, Exchange, SharePoint, Teams Ability to learn and document new technologies Experience with ServiceNow and ITIL practices The annual salary range for this position is $102,000 - $170,000. Compensation depends on skills, experience, certifications, and organizational needs. What We Offer :
Guidehouse provides a comprehensive rewards package, including competitive pay, benefits, and development opportunities, such as: Sick time, holidays, and potential bonuses Parental and adoption leave Retirement plans, insurance, and flexible spending accounts Student loan assistance, tuition reimbursement, and training Employee referral, community outreach, and other benefits
#J-18808-Ljbffr
Solid understanding of platform, network, application, and cloud security fundamentals, threats, attack techniques, and mitigations Knowledge of cybersecurity concepts and network/web protocols Designs and configures monitoring and alerts using SIEM, Azure Purview, Defender, CSPM, etc. Experience with SIEMs, SOAR technologies, IR tools, scripting, threat hunting, detection engineering, and tuning. Effective communication skills, professional and timely delivery Produces high-quality work leveraging templates, tools, and methodologies Conveys complex messages clearly to IT Security Operations team Identifies risks and escalates appropriately Assists with issue resolution, risk mitigation, and contingency planning Uses critical thinking and collaboration for technical solutions Works in unstructured circumstances Mentors and trains IT Security staff, fostering a culture of excellence and continuous learning Develops technical knowledge and skills within the team Takes ownership of tasks, resolving issues proactively Maintains professional representation of the company Proposes solutions based on experience, focusing team efforts Builds trust with stakeholders by meeting needs and expectations Stays current on cybersecurity trends and issues Maps issues to policies, procedures, and standards, identifying system and process improvements Works independently on complex projects, influencing internal and external parties Applies standards, principles, and technical concepts effectively What You Will Need :
Bachelor’s degree with 6 years of experience, or 10+ years of experience without a degree Availability to work East Coast US hours Experience supporting Windows OS, Azure, M365, and SIEMs like Splunk or Sentinel Knowledge of MITRE ATT&CK framework Experience with SOCs, NIST standards, and security analysis Proficiency in query languages like SPL or KQL Ability to manage multiple priorities and meet deadlines What Would Be Nice To Have :
Experience with AWS/Azure cloud services Degree in a cyber-related field Knowledge of NIST standards and security areas like application security, threat intelligence, incident response Experience with vulnerability management and risk assessment Understanding of adversary TTPs Experience with executive communication and security clearances Certifications such as CISSP, OSCP, CEH, Security+ Experience with firewalls, incident response, and security infrastructure Knowledge of Active Directory, Exchange, SharePoint, Teams Ability to learn and document new technologies Experience with ServiceNow and ITIL practices The annual salary range for this position is $102,000 - $170,000. Compensation depends on skills, experience, certifications, and organizational needs. What We Offer :
Guidehouse provides a comprehensive rewards package, including competitive pay, benefits, and development opportunities, such as: Sick time, holidays, and potential bonuses Parental and adoption leave Retirement plans, insurance, and flexible spending accounts Student loan assistance, tuition reimbursement, and training Employee referral, community outreach, and other benefits
#J-18808-Ljbffr