Senior Security Engineer

Role Overview 

The Senior Security Engineer is responsible for leading the design, implementation, and ongoing optimization of RedHelm’s security solutions across client and internal environments. This role serves as a technical subject matter expert across core SOC technologies, owning complex implementations from initiation through completion while supporting escalations and driving continuous improvement. 

The ideal candidate brings deep technical expertise, strong problem-solving capabilities, and the ability to operate independently in a fast-paced, client-facing environment. This individual will also play a key role in mentoring SOC analysts, advancing security capabilities, and ensuring consistent, high-quality service delivery. 

Role Focus 

• Primary Objective: Lead implementation and optimization of security solutions across client environments 

• Approach: Technical leadership, proactive problem-solving, and continuous improvement 

• Core Skills: Security architecture, implementation, escalation support, and client communication 

• Success Metrics: Successful deployments, system performance, incident resolution, and client satisfaction 

• Challenges: Managing complex environments, supporting escalations, and staying ahead of evolving threats 

Main Responsibilities 

Security Engineering & Implementation 

• Lead end-to-end implementation of security solutions across client environments 

• Design and build scalable implementation strategies and frameworks 

• Perform system upgrades, maintenance, and optimization across shared environments 

• Evaluate and test new technologies, tools, and solutions 

• Maintain and enhance SOAR platforms, including integrations and playbooks 

Technical Leadership & Escalation Support 

• Serve as SME across endpoint security, SIEM, segmentation, and network security technologies 

• Act as escalation point for Tier 3+ incidents and complex technical issues 

• Support SOC analysts during onboarding, implementations, and incident response 

• Lead proof of concepts (POCs) and technical evaluations 

• Provide advanced consulting support for high-impact client engagements 

Client Engagement & Consulting 

• Conduct client demonstrations and technical presentations 

• Assess customer environments and recommend security improvements 

• Perform health checks, rule set reviews, and security assessments 

• Build and maintain trusted relationships with technical stakeholders 

• Deliver clear, accurate communication to both technical and non-technical audiences 

SOC & Incident Response Support 

• Assist in incident response efforts and high-severity security events 

• Support deployment strategies and security frameworks 

• Act as secondary escalation point for incident response when needed 

• Respond to alerts, events, and incidents in accordance with defined procedures 

Operational Excellence & Continuous Improvement 

• Document all implementations, incidents, and processes thoroughly and accurately 

• Identify gaps in customer environments and recommend enhancements 

• Stay current on emerging threats, vulnerabilities, and industry trends 

• Collaborate with vendors on product roadmaps, features, and improvements 

• Contribute to SOC documentation, processes, and best practices 

Compliance & Security Standards 

• Ensure adherence to all Information Security and Privacy Policies 

• Maintain confidentiality and integrity of client data at all times 

• Enforce security and operational controls to protect client environments 

Required Experience 

• 5–8+ years of experience in security engineering or SOC

• Experience working in a managed services or multi-client environment preferred 

• Proven experience implementing and supporting enterprise security solutions 

• Hands-on experience with incident response and escalation support 

• Background in system administration, networking, or infrastructure engineering 

Required Skills 

• Strong technical expertise across security tools and platforms (SIEM, EDR, SOAR, firewalls, IDS/IPS) 

• Solid understanding of networking, infrastructure, and security architecture 

• Experience with scripting or programming (Python, PowerShell, Bash, etc.) 

• Strong analytical and problem-solving capabilities 

• Ability to lead complex technical projects independently 

• Excellent communication skills, both client-facing and internal 

• Ability to thrive in a fast-paced, high-pressure environment 

• Strong documentation and process discipline 

Core Technical Expectations 

This role requires deep, hands-on expertise across several core security platforms. The Senior Security Engineer is expected to operate as a subject matter expert in the following: 

Endpoint Detection & Response (EDR) — Required 

• CrowdStrike 

• Palo Alto Cortex XDR  

SIEM — Required 

• Splunk  

• Graylog 

ZTNA / Microsegmentation — Required 

• Guardicore  

• Zero Networks 

Required Qualifications and Certifications 

• Bachelor’s degree in a related field or equivalent practical experience 

• Relevant security certifications preferred (e.g., CISSP, CEH, Security+, GIAC) 

• Valid driver’s license and reliable transportation (if applicable) 

• Willingness to participate in on-call rotation (24/7 support environment) 

• Ability to travel as needed 

Additional Information 

• Must undergo and pass federal and state background checks and credit checks 

Compensation 

• Competitive annual salary of $115,000 

KPIs / Metrics 

• Successful implementation and deployment of security solutions 

• Incident resolution time and escalation effectiveness 

• System uptime, performance, and optimization improvements 

• Client satisfaction and retention 

• Quality and completeness of documentation 

• Contribution to SOC process improvements and knowledge sharing 

Information Security & Data Privacy Responsibility 

All employees are responsible for adhering to company Information Security and Privacy Policies and ensuring that all applicable procedures are consistently followed. This includes safeguarding client and company data to maintain its security, availability, and confidentiality, and upholding all legal and regulatory obligations related to data protection. Employees are expected to perform their duties in a manner that prevents security breaches or incidents that compromise business operations, client data, client data, or the company’s financial and operational standing.