Security Engineer
Role details
Job location
Tech stack
Job description
(Entra ID, Sentinel, Defender for Cloud). Contribute to container image scanning and runtime security monitoring. Support JFrog Artifactory operations including artifact security and access control. Infrastructure & Endpoint Security Apply and maintain CIS benchmark hardening across all environments company-wide. Manage patching across Linux systems, ensuring timely remediation and compliance. Support vulnerability management lifecycle: triage, prioritization, and remediation tracking. Detection, Monitoring & Response Maintain and improve Microsoft Sentinel log ingestion, analytics rules, and detection coverage. Investigate security alerts, triage incidents, and support SOC activities. Build and maintain correlation rules, workbooks, and SOAR playbooks. Dev Sec Ops & Automation Implement and maintain SAST, DAST, dependency scanning, and secrets detection in Git Lab CI/CD. Automate security operations tasks using Bash and Ansible. Contribute to Infrastructure-as-Code security reviews
Requirements
(Terraform, Helm, Kubernetes manifests). Support shift-left security practices and developer security enablement. Collaborating With You will work closely with the Infrastructure and Security teams, operating seamlessly alongside network engineering, Dev Ops, and development groups. Day-to-day, your collaboration will be highly technical, working directly with engineering peers to harden infrastructure and integrate security tooling into CI/CD pipelines. Profile and Skills Must-Have Experience 3+ years in a Security Engineer, Dev Sec Ops, or equivalent hands-on role. Solid Linux fundamentals: comfortable navigating, troubleshooting, and administering Linux environments strictly via the command line. Cloud infrastructure: practical experience with at least one major cloud platform (Azure or GCP is strongly preferred). Networking fundamentals: understanding of TCP/IP, DNS, routing, firewall rule logic, and VPN concepts. Automation & Ia C: proficient in Bash for scripting, with hands-on experience managing configuration and provisioning tools like Ansible and/or Terraform. Vulnerability management & cloud security: experience with tools such as Tenable (including Tenable Cloud Security / Ermetic), Wazuh, Qualys, or equivalents. Container ecosystems: hands-on experience with Docker, Kubernetes, and container image scanning. Software development lifecycle: experience with Git Lab CI/CD pipeline security integration (SAST, DAST, secret detection). Strong Differentiators & Nice-to-Haves Microsoft Sentinel administration (log ingestion, KQL query writing, analytics rules) or other SIEM administration experience. Azure certifications (e.g., AZ-500: Azure Security Engineer). RHEL subscription management, Insights, and patch automation with Ansible. Working knowledge of security frameworks in a live environment (ISO 27001, NIST, or CIS Benchmarks). Ways of Working & Soft Skills Ownership mindset: you close the loop and solve problems; you don't just flag issues. Clear communication: you are comfortable coordinating asynchronously and possess business-fluent English for both written and verbal collaboration. Our Commitment Everseen is committed to creating an environment where everyone can succeed. Our employees should feel a sense of belonging, have an opportunity to grow their careers, and feel free to be their most authentic selves. Everseen takes great pride in the diversity of its global workforce, and insists upon a safe, inclusive workplace where our differences are our collective strength. We treat each other with dignity and respect, and require all employees, officers, and directors to seek to understand the importance and value to Everseen of diversity and inclusion. Everseen is committed to creating a safe environment for all employees and has a zero tolerance policy for bias and discrimination of any kind. Our work environment is one without offensive, hostile, or intimidating conduct, whether verbal, written, or physical.