Key skills
PythonBashPowerShellAIAWSAzureTerraformCloudFormationAzure DevOpsPenetration TestingNetwork SecurityCloud Security
About this role
Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization. They are seeking a Senior Security Operations Engineer to lead the design, development, and continuous improvement of security detection and response capabilities, engineering scalable, automated security solutions across various domains.
Responsibilities:
- Lead the development, rollout, and operations of security operations tools and services such as SIEM, EDR, NDR, email, cloud; building detection rules, automated playbooks, and integrations
- Serve as a technical resource for security operations analysts; conduct design reviews and provide engineering guidance on detection and response workflows
- Apply a detections-as-code approach; version-controlled, peer-reviewed, and tuned against alert quality metrics
- Architect and implement security engineering capabilities, including endpoint security, data loss prevention, email security, network security, SIEM enhancements, detection engineering, and security automation
- Partner with cross-functional teams to perform threat modeling and embed security requirements in the development lifecycle
- Research, evaluate, and operationalize security products and services (including AI enabled platforms), building proof-of-concept integrations, provide recommendations or deferrals on adoption, and driving adoption across the security stack
Requirements:
- Bachelor's degree in a technical field (or equivalent)
- 7+ years of hands-on experience in a security engineering or security operations role
- Demonstrated ability to independently scope, drive, and deliver multi-month security engineering projects, including but not limited to, security information and event management, endpoint detection and response, network detection and response, vulnerability management, threat intelligence, security awareness, data loss prevention, firewalls, and email security
- Experience with cloud-native environments (Azure and AWS)
- Experience with cloud security platforms and infrastructure-as-code tools (Terraform, CloudFormation, Azure DevOps or similar)
- Proficiency in scripting and automation languages (Python, PowerShell, or Bash) for developing security tools and automating repetitive tasks
- Proficient in spoken and written English
- Experience leading or contributing to purple team exercises or threat hunting programs
- Security and/or technical industry certifications (ISC2, GIAC, EC-Council, ISACA, CompTIA, Cisco, Microsoft)
- Experience with digital forensic, privileged access management, and penetration testing tools
- Demonstrated working experience at the enterprise level with one or more of: SIEM, EDR, NDR, vulnerability management, threat intelligence, security awareness, DLP, firewalls, and email security
- Experience working within common regulatory and statutory requirements (GDPR, CCPA, SOC2, ISO 27001, NIST)