workfromanywhereworkfromanywhere
All jobs
Rhodian GroupEngineering

Cybersecurity Engineer - Level 2

United StatesPosted 6 days ago

The Cybersecurity Level 2 Engineer plays a critical role in the Security Operations Center (SOC), responsible for monitoring, investigating, and responding to security alerts and incidents across client or enterprise environments. This role requires hands-on experience with SIEM platforms, endpoint security tools, and incident response processes, with the ability to escalate and remediate threats effectively.

Location: United States

Responsibilities

  • Monitor and triage security alerts generated by SIEM, EDR, and security monitoring tools
  • Investigate security incidents including phishing, malware, endpoint compromise, and unauthorized access
  • Perform root-cause analysis and document incident findings and remediation actions
  • Tune SIEM detection rules, alerts, and dashboards to reduce false positives and improve fidelity
  • Conduct threat hunting activities using logs from endpoints, networks, cloud platforms, and identity providers
  • Respond to security incidents in accordance with established incident response playbooks and SLAs
  • Escalate complex or high-risk incidents to Level 3 or Incident Response teams with detailed context and evidence
  • Assist with vulnerability management findings and validation of remediation
  • Support log ingestion, parsing, normalization, and retention requirements for SIEM platforms
  • Maintain accurate case notes, incident reports, and security documentation
  • Collaborate with IT, engineering, and security teams to improve overall security posture

Requirements

  • 2+ years of hands-on experience in a SOC, cybersecurity, or security operations role
  • Practical experience working with SIEM platforms (Splunk, Microsoft Sentinel, LogRhythm, QRadar, Elastic)
  • Experience analyzing logs from endpoints, firewalls, IDS/IPS, cloud, and identity systems
  • Familiarity with EDR tools (CrowdStrike, SentinelOne, Microsoft Defender, Datto EDR)
  • Understanding of the incident response lifecycle and security alert triage
  • Working knowledge of common attack techniques and indicators of compromise (IOCs)
  • Experience with the MITRE ATT&CK framework
  • Strong documentation and communication skills
Apply Now

Location

United States

Category

Engineering

Source

himalayas

Posted

6 days ago

Share this job

XLinkedIn

Skills & Tags

cybersecuritysecurity-opsincident-responsethreat-detectionsecurity-operations

Similar remote jobs

DiversifiedEngineering

Senior Design Engineer - Electronic Security

$122,600 – $165,900
security-engineeringelectronic-securitydesign-engineeringsystems-engineeringsenior-design
yesterday
Tiger AnalyticsEngineering

Principal Architect - Databricks

United States
data-architecturedata-engineeringcloud-architecturedatabrickssolutions-architecture
yesterday
CanonicalEngineering

Security Software Engineer

Worldwide
securitydevsecopsapplication-securitylinuxvulnerability-research
yesterday
Air InfoSec, LLCEngineering

ERP Developer

Remote (US)
erppeoplesofterp-implementationpeopletoolsgovernment
yesterday
Crawford & CompanyEngineering

Technical Engineer I

Remote – Anywhere in the U.S.
engineeringanalyticsdata-analysisitsolutions
yesterday