Essential Functions:Platform Engineering & OptimizationConfigure, maintain, and optimize assigned security platforms across endpoint, network, web, and identity domainsContinuously refine policies, detection logic, and configurations to improve signal quality, reduce false positives, and enhance visibilityApply platform capabilities to develop and improve detection coverage (e.g., IOA, behavioral detection)Ensure platform health, telemetry integrity, and effective coverage across environmentsEvaluate and implement enhancements that improve effectiveness of existing tools before recommending new solutionsAlert Analysis & InvestigationAnalyze alerts and raw telemetry generated by security platforms and determine appropriate action based on context and riskInvestigate suspicious activity using available data sources, including logs, network traffic, and endpoint behaviorApply independent judgment to distinguish between benign, anomalous, and malicious activityPerform triage and root cause analysis, escalating when broader coordination is requiredContribute to incident response through multi-platform analysis and insightOperational Support & Issue ResolutionTroubleshoot and resolve issues related to security controls, including access disruptions, false positives, and policy conflictsApply practical, risk-based decisions when adjusting controls to balance security and operational needsCollaborate with IT, engineering, and business teams to diagnose and resolve issues efficientlyCross-Platform ContributionDevelop working knowledge across multiple security domains to support team resiliencyServe as a secondary resource across platforms (endpoint, email, vulnerability, cloud)Collaborate with peers to ensure continuity of coverage and reduce single points of failureContinuous ImprovementIdentify gaps in detection, visibility, and control effectiveness based on operational experienceImprove detection quality, reduce noise, and enhance response effectiveness (MTTD/MTTR)Contribute to development of playbooks and processes, while remaining effective in situations where such guidance is incompleteImplement automation or scripting where appropriate to improve efficiencyCollaboration & CommunicationCommunicate findings, risks, and recommendations clearly to both technical and non-technical stakeholdersTranslate technical observations into business-relevant impactDemonstrate strong active listening and the ability to incorporate differing perspectivesMaintain a collaborative, solutions-oriented approach while providing clear recommendations and directionOn-Call & Operational SupportParticipate in on-call rotation for after-hours responseRespond to security incidents and production-impacting issues in a timely and structured mannerEducation and Experience:Bachelor’s degree in Computer Science, Computer Engineering, Information Technology or related field.Minimum five (8) years of experience in information security, network security or infrastructure security.
Job Title
Sr. Information Security Engineer- Platform Engineer