SecOps Engineer

Job Purpose/Summary

The SecOps Engineer plays a critical role in the cybersecurity and IT operations team, responsible for safeguarding the organization's infrastructure. This position focuses on endpoint management, security monitoring, threat analysis, and implementing robust security practices. The role also supports compliance efforts, ensures alignment with security frameworks, and drives continuous improvement in security operations to protect company assets.

Duties and Responsibilities

Security Monitoring and Threat Management 

• Monitor and analyze security events across applications, endpoints, databases, networks, mobile, and cloud services.
• Manage endpoint devices, including configuration, compliance policies, security monitoring, and alert response.
• Investigate vulnerabilities and collaborate with teams to remediate system and application weaknesses.
• Conduct security audits, maintain audit logs, and prepare periodic reports to ensure compliance with policies and frameworks.  

Security Policy and Compliance 

• Develop, implement, and maintain security standards, policies, and procedures across diverse environments.
• Support internal and external audits, including artifact collection, documentation updates, and audit interviews.
• Implement and manage compliance measures, such as data governance, retention policies, and regulatory requirements. 

 System and Data Protection 

•  Configure and maintain security features, including Multi-Factor Authentication (MFA), Conditional Access policies, and email               encryption.
• Implement data protection measures, including encryption and secure access controls.
• Assist in managing and securing internal and external systems, ensuring an up-to-date asset inventory.  

Collaboration and Continuous Improvement 

•  Work with IT and security teams to manage systems, identify threats, and implement remediation plans.
• Research emerging threats and recommend process improvements.
• Provide guidance to executive and management staff on security-related concerns.

Additional Responsibilities

• Prepare and deliver periodic security operations reports. 
• Travel to company sites as needed to support onsite security operations and audits. 

Qualifications

Education

• Bachelor’s degree in Information Systems Management, Cybersecurity, Computer Science, or related field. 
• Knowledge of IT and cloud infrastructure design, security principles, and traditional/modern environments. 
• Familiarity with network, endpoint, application, and mobile device security concepts. 
• Understanding of operating systems, infrastructure, and cloud computing. 
• Foundational understanding of security frameworks (e.g., NIST 800-53, NIST 800-171/CMMC L2, FedRAMP, ISO 27001, CIS, SOC 2). 
• Awareness of information security laws and regulations. 
• Basic knowledge of threat actors, exploitation tactics, and defensive tools. 
• Experience using Governance, Risk, and Compliance (GRC) platforms or similar tools. 
• Self-motivated and able to work in an independent manner. 
• Excellent verbal and written communication skills for effective collaboration. 
• Certification: CompTIA Security or equivalent (required).  

Preferred 

• Proficiency in security best practices and industry frameworks. 
• Hands-on experience with scripting languages (e.g., PowerShell, Python). 
• Familiarity with KQL (Kusto Query Language) for security investigations. 
• Experience with cloud platforms (Azure, AWS). 
• Exposure to SOC operations or security event triage. 
• Experience in IT asset management and lifecycle processes.

Working conditions

 Primarily remote, with occasional office visits and up to 15% travel to company sites.

Physical requirements

Ability to work at a computer for extended periods.

Ability to travel as needed

Direct reports

 n/a