SecOps Engineer - North Central region (Remote in the U.S.)

📋 Description

• • GuidePoint Security is a leading provider of trusted cybersecurity expertise, solutions, and services, empowering organizations to make informed decisions and effectively minimize risk. We adopt a comprehensive, three-tiered approach to assess security postures and ecosystems, enabling top-tier organizations, including Fortune 500 companies and U.S. government agencies, to proactively identify threats, optimize resource allocation, and implement best-fit solutions for robust risk mitigation.
• • As a SecOps Engineer, you will play a pivotal role in embedding security seamlessly into the operational workflow of our clients. You will serve as a crucial link between IT operations and cybersecurity teams, ensuring that systems, networks, and applications are not only secure but also maintain optimal operational efficiency. Your contributions will be instrumental in safeguarding organizations against an ever-evolving threat landscape while ensuring business processes remain secure and efficient. This role is critical for maintaining regulatory compliance and upholding the overall integrity of an organization's digital infrastructure.
• • You will be empowered to autonomously prioritize and successfully deliver on a diverse portfolio of projects, demonstrating initiative and strong project management skills.
• • A core aspect of your role will involve continuous learning and staying abreast of the latest cyber threats, attack methodologies, active campaigns, and emerging detection techniques. You will leverage a wide array of capabilities and sources, including Government Off-The-Shelf (GOTS), Commercial Off-The-Shelf (COTS), and Open Source intelligence.
• • You will develop a deep understanding and adeptly utilize various cyber threat intelligence sources to inform security strategies and enhance defensive measures.
• • Familiarity with key security events across common IT platforms will be essential for identifying potential security incidents and vulnerabilities.
• • You will be responsible for authoring comprehensive security runbooks, policies, and best practice documentation, establishing clear guidelines for secure operations.
• • A significant part of your contribution will involve developing and implementing strategies for log ingestion and aggregation, ensuring that critical security data is collected and made available for analysis.
• • Expertise in developing security-focused content for one or more leading SIEM platforms is paramount. This includes crafting complex threat detection logic, building operational dashboards, and tuning alerts to minimize false positives and maximize true positives. Experience with platforms such as Splunk, CrowdStrike NG-SIEM, Elastic Security, or Palo Alto XSIAM is highly valued.
• • You will be expected to understand and articulate complex technical information clearly and concisely to both technical and non-technical audiences, facilitating effective communication and decision-making across different teams.
• • A demonstrated ability to identify and assess the relevance and effectiveness of signatures and indicators of compromise (IOCs) based on threat intelligence will be a key differentiator.
• • You will gain experience in developing and delivering regular and ad hoc briefs, documents, diagrams, and other communication products to stakeholders, effectively conveying security insights and recommendations.
• • This role offers a unique opportunity to work with a variety of clients and technologies, providing exposure to diverse security challenges and solutions.
• • You will collaborate with cross-functional teams, including IT operations, security analysts, and incident response teams, to foster a culture of security awareness and proactive defense.
• • The SecOps Engineer will contribute to the continuous improvement of security operations processes, tools, and methodologies.
• • You will be instrumental in ensuring that security controls are effectively implemented and maintained across client environments.
• • This position requires a proactive mindset, a passion for cybersecurity, and a commitment to continuous learning and professional development in a rapidly evolving field.
• • You will contribute to the overall security posture of GuidePoint's clients, helping them to achieve their business objectives securely and confidently.
• • The ability to work independently and manage your time effectively in a remote work environment is crucial for success in this role.
• • You will be part of a dynamic and growing team, contributing to GuidePoint's reputation as a trusted cybersecurity advisor.
• • This role is ideal for individuals who are passionate about operationalizing security and making a tangible impact on an organization's security resilience.