Information Security Engineer - Insider Risk

📋 Description

• Engineer and automate end-to-end detection and investigation workflows.
• Improve Detection and Response infrastructure continuously.
• Develop alerting and detection strategies for malicious or anomalous behavior.
• Dissect artifacts from network, host, memory across OSs.
• Investigate security events and active attacks to identify insider risk.
• Influence security controls and partner with the team to strengthen defense.

🎯 Requirements

• 3+ years security experience on major platforms (AWS/Azure/Windows/Linux)
• Python (preferred) or PowerShell proficiency
• Familiarity with endpoint telemetry and OS log sources
• Experience with SIEM/SOAR and writing queries for security events
• Active TS/SCI clearance or eligibility to obtain one

🎁 Benefits

• Medical, dental, vision insurance for employees and dependents
• Voluntary life insurance and basic life/AD&D coverage
• Commuter benefits and relocation assistance
• Take-what-you-need paid time off and year-end 2 weeks
• 10 paid holidays and family-friendly benefits
• 401k enrollment