Key skills
Security operationsThreat detectionresponseRisk assessmentVulnerability managementSecurity technologiesEmail security platformsData Loss Prevention (DLP)Security InformationEvent Management (SIEM)Security OrchestrationAutomationResponse (SOAR)Intrusion Detection/Prevention Systems (IDS/IPS)Endpoint DetectionResponse (EDR)Threat intelligence platformsFirewall managementCloud securityGoogle Cloud Platform (GCP)Amazon Web Services (AWS)AI-enabled security workflowsSecurity policiesstandardsSecurity compliance frameworksCISSPCISMGIACCEHwork autonomouslyStakeholder partnershipAIAWSGCPCommunicationCollaborationOWASPPenetration TestingCloud Security
About this role
Valon is building the AI-native operating system for regulated finance, starting with mortgage servicing. They are seeking an experienced Senior Security Operations Engineer to scale and strengthen enterprise security operations, protecting systems, networks, and data as the company grows.
Responsibilities:
- Manage and optimize security tools such as email security, DLP, SIEM, IDS/IPS, EDR, threat intelligence platforms, and other tooling
- Design and implement AI-enabled workflows to scale enterprise security and threat operations
- Monitor and manage security alerts and incidents, analyze data, and respond to security events
- Conduct in-depth analysis of security events and vulnerabilities to identify root causes and recommend corrective actions
- Assist in vulnerability assessments and penetration testing activities including remediating security vulnerabilities
- Collaborate with other teams to ensure the effective integration of security controls across the organization including IT infrastructure and applications
- Develop, implement, and enforce security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of systems and data
- Support operational activities including security reviews, vendor security, issue remediation, security awareness and training, and other processes
- Support audit and compliance activities for various security domains
Requirements:
- Proven experience in a security analyst, engineer or related role, with a focus on enterprise / IT security, threat detection and response, vulnerability management, and/or risk assessments
- In-depth knowledge and implementation of security technologies, including email security platforms, DLP, IDS/IPS, EDR, SIEM/SOAR, CASB, firewalls, vulnerability management tools, threat intelligence platforms or related
- Strong understanding of networking protocols, system administration, infrastructure security or related domains
- Experience with cloud security and environments (GCP, AWS)
- Demonstrated experience leveraging AI and automation to improve the efficiency and scalability of enterprise security operations and threat management
- Ability to work autonomously, lead projects, and navigate complex efforts
- Ability to foster strong relationships and partner with stakeholders to drive results
- Excellent communication and collaboration skills, with the ability to explain complex security concepts to technical and non-technical stakeholders
- Applied knowledge with industry security and compliance frameworks (OWASP, NIST, CIS, SOC 2/ISO 27001 concepts)
- Minimum of 5 years as a security engineer or similar with relevant responsibilities and background
- Bachelor's degree in Computer Science, Information Security, Technology, or a related field
- Relevant security certifications (e.g., CISSP, CISM, GIAC, CEH or similar)
- Knowledge of cloud environments
- Experience with security technologies (SIEM/SOAR, EDR, IDS/IPS, vulnerability tools or similar)
- Experience or exposure to startup environments is a plus