Builders FirstSource is America’s largest supplier of building materials, and they are seeking a Security Operations Center Engineer. This role is focused on enhancing the organization's cybersecurity posture through monitoring security alerts, investigating threats, and supporting incident response efforts.
Responsibilities:
- Monitor SIEM/XDR/SOAR and other telemetry for alerts, anomalies, and indicators of compromise (IOCs)
- Perform Level 1-2 triage, enrichment, scoping, and prioritization of events
- Execute response playbooks (isolation, containment, account/device quarantine, EDR actions, network blocks)
- Support incident investigations (forensics acquisition, timeline analysis, root cause)
- Document incidents thoroughly (IR tickets, evidence handling, post-incident reports)
- Maintain shift logs, knowledge base updates, runbooks, and handoffs
Requirements:
- 2+ years relevant work experience
- Or an equivalent combination of experience and education
- Clear written and verbal communication, decision-making under pressure, and strong collaboration across IT and business teams
- Ability to work independently on shift and drive incidents to closure
- Certifications: GCIA, CySA+ (or equivalent experience)
- Experience with SentinelOne, Zscaler ZIA, Google Secops, Azure/M365 security tooling, E-mail security and PAM