Key skills
PythonBashPowerShellAIAzureTerraformCloudFormationAzure DevOpsPenetration TestingNetwork SecurityCloud Security
About this role
Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization. They are seeking a skilled Security Operations Engineer to design, build, and automate security capabilities within a distributed security operations environment.
Responsibilities:
- Engineer and maintain security operations platforms (SIEM, EDR, NDR, email, cloud); building detection rules, automated playbooks, and integrations
- Apply a detections-as-code approach; version-controlled, peer-reviewed, and tuned against alert quality metrics
- Architect and implement security engineering capabilities, including endpoint security, data loss prevention, email security, network security, SIEM enhancements, detection engineering, and security automation
- Collaborate with cross-functional teams to embed security controls into business processes
- Research, evaluate, and operationalize security products and services (including AI enabled platforms), building proof-of-concept integrations, provide recommendations or deferrals on adoption, and driving adoption across the security stack
Requirements:
- Bachelor's degree in a technical field (or equivalent)
- 3+ years of hands-on experience in a security engineering or security operations role
- Demonstrated working experience at the enterprise level with one or more of the following: security information and event management, endpoint detection and response, network detection and response, vulnerability management, threat intelligence, security awareness, data loss prevention, firewalls, and email security
- Proficiency in scripting and automation languages (Python, PowerShell, or Bash) for developing security tools and automating repetitive tasks
- Proficient in spoken and written English
- Security and/or technical industry certifications (ISC2, GIAC, EC-Council, ISACA, CompTIA, Cisco, Microsoft)
- Experience with digital forensic, privileged access management, and penetration testing tools
- Demonstrated working experience at the enterprise level with one or more of: SIEM, EDR, NDR, vulnerability management, threat intelligence, security awareness, DLP, firewalls, and email security
- Experience working within common regulatory and statutory requirements (GDPR, CCPA, SOC2, ISO 27001, NIST)
- Experience with cloud security platforms and infrastructure-as-code tools (Terraform, CloudFormation, Azure DevOps or similar)