Security Engineer SOC II

Paul May & Associates
Skokie, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Shift work
Languages
English
Experience level
Senior
Compensation
$ 110K

Job location

Skokie, United States of America

Tech stack

Artificial Intelligence
Automation of Tests
Azure
Cloud Computing Security
Computer Security
Identity and Access Management
Intrusion Detection Systems
Security Information and Event Management
Systems Integration
Software Vulnerability Management
Information Technology
Sumo Logic
Splunk
ServiceNow

Job description

Seeking a Security Engineer II to strengthen our SOC (Security Operations Center) and lead incident response activities across cloud, network, and endpoint environments. This mid-level role requires hands-on expertise with Sumo Logic and a strong grasp of the incident response lifecycle (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned). The ideal candidate will be comfortable investigating alerts, refining SOC processes, and working with multiple enterprise security platforms (CrowdStrike, Tenable SC, Delinea, Palo Alto xDome, Bitsight, Azure, ServiceNow, Splunk). Key Responsibilities Monitor and investigate SOC alerts from SIEM, EDR, IDS/IPS, DLP, and cloud security tools. Lead incident response activities, including containment, remediation, documentation, and reporting. Build, maintain, and tune Sumo Logic dashboards, queries, and integrations. Support vulnerability management and coordinate remediation with IT teams. Document playbooks, improve SOC processes, and provide lessons-learned feedback. Collaborate with infrastructure, cloud, and application teams to reduce risks. Independently conduct complex incident investigations and report results and attack information to leaders/management. Partner with engineering and IT teams to mitigate IoT/IoMT security risks., As a QA Automation Engineer, you will play a crucial role in shaping the future of AI systems by designing and implementing automated testing solutions. Your expertise will directl…

  • 1 day ago, Join a dynamic team as a Software Engineer, contributing to innovative backend software development and AI model evaluation. This role offers the opportunity to leverage your engin…
  • 4 days ago

Requirements

Minimum eight (8) years combined IT/ Cybersecurity experience five (5) years Cybersecurity experience and must have Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience). 5+ years of cybersecurity experience (SOC, Incident Response, or related functions). Strong hands-on experience with Sumo Logic (or Splunk) for SIEM operations. Must have familiarity with incident response frameworks and playbook development Experience with at least enterprise security applications (EDR (CrowdStrike), SIEM, IAM, Vulnerability Management, DLP, etc.). Knowledge of regulatory and compliance standards (HIPAA, NIST, FedRAMP). Industry certifications (e.g., GCIA, GCIH, CISSP, Azure Security) preferred. Participate in compliance reviews and security assessments (HIPAA, NIST, ISO). Contribute to security projects and mentor junior team members.

Benefits & conditions

  • $70.00-77.00 per hour Join a leading digital health technology company''s engineering team to help build and secure the cloud infrastructure behind software that connects hospitals, clinicians, and pati…

  • 3 days ago

Apply for this position