Blue Team Security Engineer

Salary- $90K/yr - $120K/yr
Remote
Posted 1 month ago

Job Description

We are seeking a highly motivated Blue Team Security Engineer to join our Cyber Defense team. The successful candidate will be responsible for protecting enterprise systems, networks, cloud environments, and digital assets from cyber threats. This role focuses on threat detection, incident response, security monitoring, and continuous improvement of defensive security capabilities.

The ideal candidate has experience with Security Operations Center (SOC) processes, threat hunting, incident response, security monitoring technologies, and vulnerability management. You will work closely with security analysts, incident responders, and IT teams to strengthen the organization’s security posture and defend against evolving cyber threats.


Key Responsibilities

  • Monitor and analyze security events using SIEM and endpoint detection platforms.
  • Investigate suspicious activities, security alerts, and potential cyber incidents.
  • Conduct proactive threat hunting to identify hidden threats and malicious activity.
  • Develop and maintain threat detection rules and security use cases.
  • Respond to cybersecurity incidents and coordinate containment, eradication, and recovery efforts.
  • Analyze malware, phishing attacks, ransomware activity, and other cyber threats.
  • Collaborate with Red Team members to improve security controls and detection capabilities.
  • Perform vulnerability assessments and support remediation activities.
  • Implement security best practices across network, cloud, and endpoint environments.
  • Create incident reports and communicate findings to stakeholders.
  • Assist in developing security playbooks, procedures, and response plans.
  • Support compliance initiatives and security audits.
  • Stay current with emerging cyber threats, attack techniques, and industry trends.

Required Qualifications

  • Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or a related field.
  • 3+ years of experience in cybersecurity operations, incident response, or security engineering.
  • Experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, or Elastic.
  • Knowledge of network security principles, firewalls, IDS/IPS, and endpoint protection technologies.
  • Understanding of cyber threat intelligence and MITRE ATT&CK Framework.
  • Experience with Windows, Linux, and cloud security environments.
  • Strong analytical and problem-solving skills.
  • Excellent communication and documentation abilities.

Preferred Qualifications

  • Security certifications such as Security+, CySA+, GCIH, GCIA, CISSP, or CEH.
  • Experience with EDR/XDR platforms such as CrowdStrike Falcon, Microsoft Defender, or SentinelOne.
  • Knowledge of scripting languages including Python, PowerShell, or Bash.
  • Familiarity with malware analysis and digital forensics.
  • Experience in cloud platforms such as AWS, Azure, or Google Cloud.

Technical Skills

  • Security Monitoring
  • Threat Hunting
  • Incident Response
  • Vulnerability Management
  • SIEM Administration
  • Endpoint Detection & Response (EDR)
  • Network Security
  • Threat Intelligence
  • Windows & Linux Security
  • Cloud Security
  • Python
  • PowerShell
  • MITRE ATT&CK
  • Digital Forensics

Benefits

  • Competitive Salary
  • Annual Performance Bonus
  • Health, Dental, and Vision Insurance
  • Remote/Hybrid Work Flexibility
  • Professional Certification Reimbursement
  • Employee Wellness Programs
  • Career Development Opportunities

Job Features

Job CategoryCyber Security

Apply For This Job

A valid phone number is required.