SecOps Observability Engineer - North Central region (Remote in the U.S.)
Skills
- Hands-on experience with SIEM and SOAR platforms (development, tuning, and incident workflows).
- Experience with data stream management tools (Cribl or equivalent) and log pipeline engineering.
- Strong knowledge of log management, monitoring, alerting, parsing, aggregation, and normalization.
- Proven SOC experience in threat detection, incident response, and security event monitoring.
- Ability to write concise technical documentation and produce incident reports.
- Effective communication and collaboration with stakeholders and vendors.
Responsibilities
- Design, deploy, and tune SIEM and SOAR rules, alerts, and playbooks to surface critical threats with low false positive rates.
- Build and maintain data ingestion, transformation, enrichment, parsing, aggregation, and normalization workflows (including Cribl or similar).
- Operate within SOC workflows: threat detection, triage, investigation, and incident response support.
- Develop and maintain detection content, runbooks, and automation to accelerate mean-time-to-detect and respond.
- Collaborate with internal stakeholders, client teams, and external vendors to integrate log sources and telemetry.
- Produce clear incident reports, metrics dashboards, and technical documentation on system performance and detections.
- Support continuous improvement of observability platform performance, storage, and alerting strategies.
Education
- Bachelor's degree in a relevant discipline or equivalent experience.
- Relevant industry certifications preferred (e.g., Splunk, GCNA/Elastic, GIAC, CISSP) but not required.
Benefits
- Remote-first U.S.-based workforce with occasional travel or on-site requirements for some roles.
- Group medical insurance with competitive employer premium contributions and HSA options.
- Group dental insurance with employer-covered employee premiums.
- 12 corporate holidays and Flexible Time Off (FTO) program.
- Mobile phone and home internet allowance.
- Eligibility for retirement plan after 2 months and pet benefit option.
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
GuidePoint Security seeks a remote SecOps Engineer to design SIEM detection content, build log ingestion strategies, and operationalize threat intelligence across enterprise environments.
Lead and scale GuidePoint’s most strategic partner relationships in the Southwest by architecting GTM plans, driving KPIs, and aligning executive stakeholders across sales and vendor teams.
Senior IT leader needed to translate strategy into execution, lead cross-functional infrastructure projects, and serve as a strategic advisor and proxy to the VP of IT Operations & Infrastructure.
Corebridge Financial seeks an experienced Sales Performance Management Tech Lead in Houston to architect and deliver SAP SPM data integrations and build a cost-effective modern SPM platform.
Concentrix is hiring a remote CRM Functional Analyst to drive Salesforce functional design, business analysis, and UAT across large CRM transformations and org merges.
Technical and people leader needed to drive architecture, operations, and continual improvement of hybrid cloud and on-prem data infrastructure supporting AI, bioinformatics, and large-scale research at the University of Chicago.
The Office of Information Security seeks a Security Awareness Analyst to turn complex cybersecurity topics into compelling, measurable awareness campaigns and tools that drive secure behavior across the university system.
Inmar Intelligence seeks an Information Security Intern for Summer 2026 to support vulnerability management, incident response, cloud security, and compliance efforts at its Winston‑Salem headquarters.
Provide frontline support for clinical and business healthcare applications at Nordic Global while advancing your skills through certifications and hands-on mentorship.
Experienced Linux-focused monitoring and automation engineer needed to support enterprise monitoring (EM7) environments and automate operational workflows across network, collaboration, data center, and security portfolios.
Satair, part of Airbus, is looking for an IT Support Specialist in Dulles to deliver hands-on technical support, incident coordination, and asset/IAM management for local and global users.
Lead and grow a regional Security Operations Center for Woven by Toyota, driving detection, incident response, and automation across cloud and vehicle-related environments.
Support the Boca Raton IT team as an on-site IT Support Technician Intern handling help desk tickets, onboarding/offboarding, asset tracking, basic networking and end-user support for a growing consumer CPG company.
Remote POS Systems Analyst for Live Nation responsible for ensuring POS and venue IT data integrity, standardizing SKU/reporting structures, and supporting application integrations across multi-location venues.
Provide on-site desktop and application support for D&M Leasing and Four Stars Auto Group, troubleshooting hardware, Windows/Microsoft 365 environments, dealership systems, and local networks to ensure continuous business operations.
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions that minimize risk. Our experts act as your trusted advisor to understand your business and challenges, helping you ...
22 jobs
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
