Senior Security Engineer (Remote - Central Region)

Company DescriptionSince 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant''s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.Job DescriptionThe Security Engineer is responsible for enabling the technology and tools required to effectively accomplish daily tasks within a Security Operations Center. The primary role of the SOC Security Engineer is to enable SOCs to effectively utilize technology to accomplish daily tasks. The Security Engineer will collaborate with Mandiant Architects, Mandiant Analysts, Client Information Technology (IT) resources, as well as other business resource owners, to maintain the operational readiness and appropriate configurations of all technologies required for the client''s SOC to maintain effective incident detection and response capabilities. Candidates for this position must enjoy working as a member of a highly technical team in a rapidly changing environment, be experienced in administrating a variety of information security technologies, excited to learn new emerging technologies, and passionate about protecting customer data and corporate assets from the diverse threats facing multiple industries. What You Will Do: Implement new tools and technology that can be utilized to accomplish daily tasks within the SOC Maintain operational readiness, patch management, and appropriate configurations of all SOC related tools and technologies, including Splunk and CrowdStrike technologies Improve and refine security tool rulesets, alert thresholds, and telemetry Implement scripts and technology to automate tasks or reduce manual processesQualificationsMinimum Requirements: 3+ Years of professional information security experience 2+ Years of implementing, administering, and maintaining Splunk Enterprise Security 2+ Years administering various security technologies such as IDS/IPS, EDR, Firewalls, Web Proxies, DLP, CASB, SIEM, DNS security, DDoS protection, and Active Directory 2+ years of experience working with or administering tools used in security event analysis, incident response, computer forensics, malware analysis or other areas of security operations 2+ years of experience with networking, including TCP/IP protocols and network topology Fundamental understanding of operating systems, including Windows and Linux Fundamental understanding of security controls for common platforms and devices, including Windows, Linux and network equipment Desired Qualifications: Strong communication and listening skills, a thorough approach to complex problem solving, decision-making ability, and a high motivation towards setting and delivering ''excellence'' Ability to listen, establish relationships, gain consensus, rapidly establish credibility with and gain confidence of multiple areas across the organization Experience with UEBA technologies Experience configuring or running SOAR or automation tooling Working knowledge of Python, Golang, PowerShell, or other scripting languages Experience working with hybrid cloud infrastructure Understanding and framing business need and technical imperatives and inspiring confidence with a variety of internal and external stakeholders Demonstrate exceptional teamwork and foster collaboration within the organization Excellent problem-solving abilities Ability to document and explain technical details in a concise and understandable manner Demonstrated ability to be flexible, positive, and creative in a dynamic, fast paced and changing environment. Demonstrated aptitude and the desire to learning new technologies and services Additional InformationAs a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant''s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire. At Mandiant we are committed to our OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.This is a regionally-based role that must be located in the Central Region of the US.

Created: 2025-11-15