Senior Security Operations Engineer

About the job

Overview

As a Senior Security Operations Engineer at AvidXchange, you will play a critical role in our security incident response team, contributing to the design, implementation, and management of security operations, incident response, and threat hunting. Your primary responsibility will revolve around securing the organization’s infrastructure by monitoring, triaging, and remediating security events, with a strong focus on enhancing our overall security posture. As a subject matter specialist in your field, you will demonstrate proficiency in managing complex processes and implementing organization-wide solutions to address intricate security challenges.

What You’ll Do

• Actively support the Security Operations Center (SOC) by crafting advanced queries and alerts, leading incident response efforts, investigations, and digital forensics preservation.
• Demonstrate leadership in developing and implementing security automation solutions, optimizing processes for efficient alert triage, incident response, and security workflow automation.
• Ensure the confidentiality, integrity, and availability of AvidXchange systems by participating in a 24x7x365 on-call rotation within the Security Operations team.
• Contribute to the organization’s security framework by designing and presenting incident response playbooks, organizational policies, and gap analysis documents.
• Utilize extensive experience in securing cloud environments to implement and maintain best security practices across cloud platforms
• Share your expertise and knowledge to empower the team in handling security incidents, implementing best practices, and advancing their skills within the field.

What We’re Looking For

• 5+ years of experience deploying, supporting, and managing cyber security systems and incidents.
• Subject matter expertise in cyber security tools and systems, including threat Detection and Response, Network and Endpoint Security.
• Hands-on experience securing cloud environments, implementing robust security controls, and efficient monitoring mechanisms.
• Excellent communication skills, capable of collaborating effectively with cross-functional teams and providing security consulting.
• Proven track record of successfully designing and implementing security automation solutions within corporate environments, with a strong focus on alert triage, incident response, patch management, and vulnerability management.
• Proficiency in programming and scripting languages, including Kusto Query Language (KQL), Python, and PowerShell, to develop and optimize security automation tasks