Security Platform Engineer - Secret Clearance

Design, integrate, and maintain security platforms used within a SOC, including SIEM, SOAR, EDR, NDR, and threat intelligence platforms.

Improve security data quality by normalizing, enriching, and validating log and event data from diverse sources.

Operationalize threat intelligence by integrating internal and external intel feeds into detection and response workflows.

Develop automation and orchestration workflows that reduce analyst toil and accelerate detection, investigation, and response activities.

Partner closely with SOC analysts to translate operational needs into scalable engineering solutions.

Build and tune detections, alerts, and playbooks to improve signal-to-noise ratio and overall SOC effectiveness.

Troubleshoot platform integrations, data pipelines, and automation failures across the security stack.

Document platform architecture, workflows, and operational procedures to support sustainment and knowledge transfer.

5+ years of experience in security engineering, SOC engineering, or security platform integration roles.

Hands-on experience with SIEM platforms (Splunk, Sentinel, QRadar, or similar) and SOAR tools.

Strong understanding of security telemetry, log sources, and data pipelines across cloud and on-prem environments.

Experience integrating and leveraging threat intelligence feeds, frameworks (MITRE ATT&CK), and enrichment services.

Proficiency with scripting or automation languages such as Python, PowerShell, or similar.

Familiarity with APIs, webhooks, and event-driven architectures.

Active Secret clearance required; ability to maintain clearance throughout employment.

Strong communication skills with the ability to work directly with SOC analysts and stakeholders.

Salary range: $130,000 - $170,000

Comprehensive benefits package including medical, dental, vision, 401(k), PTO, Sick Leave as required by law