Redapt, Inc.Remote
Senior Security Engineer
United States of America
Full-time
1 week ago
H1B Sponsor Likely
Key skills
Google SecOpsCribl PipelinesPrivileged Access ManagementDLP technologiesEmail security suitesIncident responseSOAR automationScripting languagesData governance knowledgeTroubleshooting mindsetCross-functional workcommunicationAdaptabilityPythonBashPowerShellGoogle CloudVaultCommunicationCloud Security
About this role
Redapt, Inc. is a pioneering world-class data center infrastructure integrator and cloud services provider. The Senior Security Engineer will own and operate various security tools and systems, focusing on log ingestion pipeline tuning, security event analysis, and strengthening email threat defense.
Responsibilities:
- Google SecOps (SIEM) & Cribl
- Manage Google SecOps/SIEM for threat detection, alerting, and investigation workflows
- Configure, optimize, and troubleshoot Cribl Pipelines, including routing, filtering, and data transformation
- Maintain permissions, application needs, and data integration health across the SIEM ecosystem
- Support detection development and correlation logic tuning
- Secret Server (PAM)
- Administer Thycotic/Delinea Secret Server for privileged credential management
- Manage vaulting, rotation, permissions, access policies, and integration with other systems
- Troubleshoot authentication failures, vault sync issues, and automation scripts
- Cyberhaven DLP
- Maintain and configure Cyberhaven DLP for data loss prevention
- Monitor alerts, investigate potential data exfiltration events, and adjust policies
- Support incident response workflows for DLP events
- Proofpoint Suite
- Administer Proofpoint email security tools including TAP, TRAP, and DLP components
- Tune phishing, malware, and impersonation detection rules
- Analyze email threat logs, quarantine queues, and end‑user reports
- Cross‑Role Support
- Assist Senior Security Engineer 1 during major Palo Alto or CrowdStrike incidents or upgrades
- Collaborate on enterprise-wide security improvements
- Duties as Assigned
- Troubleshoot and support related platforms as needed for security incident resolution
- Participate in onboarding sessions, implementation tasks, and knowledge-sharing activities
Requirements:
- 5–8+ years of security engineering or operations experience
- Hands-on SIEM experience (Google SecOps preferred)
- Experience with Cribl or similar log pipeline tools
- Proficiency with Privileged Access Management (Secret Server strongly preferred)
- Experience with DLP technologies (Cyberhaven ideal, others acceptable)
- Experience with enterprise email security suites (Proofpoint preferred)
- Strong analytical and incident response capabilities
- Strong communication and client-facing presence
- Excellent troubleshooting and investigative mindset
- Ability to work cross-functionally and provide mentorship
- Adaptability in rapidly changing environments
- Certifications in: Google Cloud/Security (e.g., Professional Cloud Security Engineer)
- Cribl Certified Observability Engineer
- Delinea/Thycotic PAM certifications
- Proofpoint PPS/PCES certifications
- Experience with SOAR automation and playbooks
- Background in scripting languages (Python, PowerShell, Bash)
- Knowledge of data governance, insider threat, or compliance frameworks (e.g., NIST, CIS, SOC2)