Sr. Associate, SOC Engineer

---

Job description

Overview:
POSITION SUMMARY:

The Bayview Security Operations Center (SOC) is looking for a seasoned professional to join our enthusiastic, innovative, and results driven team. The Senior Associate Security Operations Center (SOC) Engineer will manage security tools and automate processes to support the SOC. This role requires strong technical skills, curiosity, critical thinking, and a solid understanding of security tools and processes.

Key Responsibilities:

Install and maintain Splunk SIEM and SOAR infrastructure

Configure log collection from on-prem and cloud infrastructure

Manage SentinelOne EDR and other SOC tools

Integrate various security tools and platforms to ensure seamless data flow and enable the automation of SOC processes

Configure Azure and AWS incident response infrastructure

Create and maintain documentation for all security tools

Participate in proof-of-concept testing and implementation of new solutions

Work closely with SOC analysts to identify opportunities for automation and improve overall SOC performance.

Provide training and support to SOC analysts on the use of security tools and scripts

Stay current with the latest security tools, automation techniques, and best practices to continually enhance SOC operations

Minimum Qualifications:

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Equivalent work experience may be consideredin lieu of degree.

10+ years of security engineering experience

Extensive Splunk administration experience is required, Splunk certifications are desired

Experience with SOAR platforms is required. Splunk SOAR (Phantom) is preferred.

Experience managing EDR platforms is required. SentinelOne is preferred.

Experience with Python and PowerShell is required

Experience with Azure is required

Experience with AWS is required

Linux administration experience is required

Strong problem-solving and analytical skills, with a focus on innovation and efficiency

One or more of the following certifications is preferred: Splunk Cloud Certified Admin, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, Splunk Enterprise Security Certified Admin, Splunk SOAR Certified Automation Developer, Splunk Certified Cybersecurity Defense Engineer

Location & Compensation:

Location: Located anywhere in the US / Remote role

Base compensation is expected to be $(phone number removed) with the opportunity for incentive compensation including bonus compensation.

Physical Demands and Work Environment

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is regularly required to sit and use hands to handle, touch or feel objects, tools, or controls. The employee frequently is required to talk and hear. The noise level in the work environment is usually moderate. The employee is occasionally required to stand; walk; reach with hands and arms. The employee is rarely required to stoop, kneel, crouch, or crawl. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, color vision, and the ability to adjust focus.

EEOC

Bayview is an Equal Employment Opportunity employer. All aspects of consideration for employment and employment with the Company are governed on the basis of merit, competence and qualifications without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, or any other category protected by federal, state, or local law.

<!– job description page –>