Enable job alerts via email!

Senior Security Engineer

ZipRecruiter

Richmond Hill

On-site

CAD 80,000 - 120,000

Full time

3 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in the cybersecurity sector is seeking a skilled professional for a role focused on security incident response and Elastic SIEM management. The successful candidate will be responsible for investigating security incidents, developing detection rules, and automating tasks to enhance operational efficiency. This position requires extensive experience in a SOC environment, strong knowledge of cybersecurity frameworks, and proficiency in scripting languages such as PowerShell and Python.

Qualifications

5+ years of experience in a SOC environment focusing on ELASTIC SIEM.
Strong knowledge of log analysis, incident response, and threat detection.
Proficiency in PowerShell and Python scripting.

Responsibilities

Investigate security incidents using log data.
Create and refine SIEM rules and dashboards.
Automate repetitive tasks to improve SOC efficiency.

Skills

Log analysis

Incident response

Threat detection

PowerShell

Python

Elastic SIEM

Problem-solving

Tools

Elastic Stack

AWS

GCP

Azure

Job Description

Key Responsibilities:

Log Investigation & Incident Response:

Investigate security incidents using log data to identify threats and vulnerabilities.
Respond to incidents in a timely and efficient manner, ensuring thorough documentation and analysis.
Develop and maintain incident runbooks and response procedures.

Rule & Dashboard Development:

Create and refine SIEM rules, alerts, and dashboards to enhance threat detection capabilities.
Continuously optimize detection logic to reduce false positives and improve accuracy.
Collaborate with SOC analysts to identify and implement new use cases.

Elastic SIEM Management:

Design and maintain a scalable Elastic SIEM infrastructure.
Manage data ingestion, ensuring accurate and consistent logging from various sources.
Monitor system health and performance, implementing optimizations as needed.

Scripting & Automation:

Automate repetitive tasks using PowerShell and Python to improve SOC efficiency.
Develop custom scripts to enhance log parsing and event enrichment processes.

Security & Best Practices:

Implement SIEM security measures, including user roles and access controls.
Stay updated with the latest security trends and ensure compliance with industry best practices.

Required Skills & Experience:

5+ years of experience in a SOC environment with a focus on ELASTIC SIEM.
Strong knowledge of log analysis, incident response, and threat detection methodologies.
Experience with the Elastic SIEM stack (Elasticsearch, Logstash, Kibana).
Proficiency in PowerShell and Python scripting.
Familiarity with network protocols, cybersecurity frameworks, and attack vectors.
Experience with Linux and cloud platforms (AWS, GCP, or Azure).
Excellent problem-solving skills and attention to detail.

EEO Statement

Paymentus is an equal opportunity employer. We are committed to making employment decisions without regard to race, religion, creed, sex, sexual orientation, ancestry, citizenship status, marital status, military service or veteran status, genetic information, medical condition, or any other classification protected by law.

Reasonable Accommodation

Paymentus supports its obligation to accommodate applicants and employees with disabilities. If you need a reasonable accommodation, please discuss this with the Human Resources Department or your supervisor.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs

Senior Application Security Engineer

Arctic Wolf

Remote

CAD 100,000 - 130,000

5 days ago

Be an early applicant

Senior Application Security Engineer

Coalition Inc

Remote

CAD 100,000 - 130,000

2 days ago

Be an early applicant