Principal Information Security Operations Engineer

Principal Information Security Operations Engineer

Location: Oakland, CA (Moving to Walnut Creek, CA)

Industry: Maritime & Logistics

Job Type: Full-time, Onsite

About the Company

StratITech is working with a confidential maritime client that plays a critical role in global logistics and transportation. This company is committed to operational excellence, security, and innovation, ensuring seamless supply chain operations across key trade routes.

As cyber threats continue to evolve, they are looking for a Principal Information Security Operations Engineer to strengthen their security posture, protect critical infrastructure, and drive incident response capabilities.

No C2C or C2H. This is a direct-hire, full-time opportunity.

About the Role

This role is part of the Security Operations team, responsible for monitoring, detecting, and responding to security threats across cloud and on-prem environments. The ideal candidate is a highly technical security expert with experience in incident response, threat detection, and risk mitigation—someone who thrives in fast-moving environments where security is a top priority.

In the maritime industry, cyber threats are constantly evolving, and this role requires a proactive, detail-oriented, and analytical mindset to stay ahead of emerging risks.

What You’ll Do

• Lead security event monitoring, log analysis, incident management, and compliance monitoring across the organization.
• Respond to security incidents and threats from initial detection to remediation, working across IT, cloud, and infrastructure teams.
• Act as the primary contact for security escalations and incident response efforts.
• Investigate security breaches, phishing attacks, and suspicious activities, ensuring timely containment and remediation.
• Develop SOAR playbooks to enhance automation and minimize incident response time.
• Ensure security controls and best practices are implemented across firewalls, SIEM, IDS/IPS, and cloud environments.
• Collaborate with third-party security providers, forensic specialists, and internal teams on security strategies.
• Conduct root cause analysis to improve detection, response, and overall security posture.
• Research and stay ahead of emerging threats, vulnerabilities, and industry trends to proactively strengthen security defenses.
• Participate in on-call rotation to respond to critical security events.

What You Bring

• Security Operations Expertise – Hands-on experience with SOC Tier 2 & 3 responsibilities, log analysis, event correlation, and SIEM tools.
• Incident Response & Threat Hunting – Strong understanding of incident lifecycle management, forensic analysis, and malware investigation.
• Technical Knowledge – Deep expertise in network security, cloud environments (AWS/Azure), security protocols (BGP, DNS, SMTP, SSL, etc.), and endpoint security.
• Security Tools Proficiency – Familiarity with Splunk, Microsoft Defender, Proofpoint, PowerShell, and various security automation tools.
• Cloud & Infrastructure Security – Experience securing cloud-based systems (AWS, Azure) and implementing best practices for hybrid environments.
• Strong Communication Skills – Ability to translate technical security issues into actionable insights for executives and cross-functional teams.
• Collaboration & Problem-Solving – Ability to work independently while partnering across security, IT, and business teams.

Preferred Qualifications

• Relevant security certifications (CISSP, CEH, GIAC - GCIH, GCIA, GCFA, etc.).
• Experience with web security vulnerabilities (XSS, CSRF, SQL Injection).

Compensation & Benefits

• Competitive Salary (based on experience)
• Career Growth & Leadership Opportunities
• 20% Travel Requirement
• Full Benefits Package

At StratITech, we partner with industry leaders to build teams that secure critical infrastructure and protect global operations. If you’re looking for a challenging role where cybersecurity meets maritime innovation, we want to hear from you.

Apply now to learn more.