Security Operations Engineer, Associate - Security Operations Engineering
About The Position
Blackstone is the world’s largest alternative asset manager. We seek to create positive economic impact and long-term value for our investors, the companies we invest in, and the communities in which we work. We do this by using extraordinary people and flexible capital to help companies solve problems. Our $1.1 trillion in assets under management include investment vehicles focused on private equity, real estate, public debt and equity, infrastructure, life sciences, growth equity, opportunistic, non-investment grade credit, real assets and secondary funds, all on a global basis. Further information is available at www.blackstone.com. Follow @blackstone on LinkedIn, X, and Instagram. Business Unit Overview: Blackstone Technology & Innovations (BXTI) is the technology team at the core of each of Blackstone’s businesses and new growth initiatives. Serving both internal and external clients, we work to build the next generation of systems that manage risk, create efficiency and improve transparency within the firm and across our broad community of investors and portfolio companies. BXTI is nimble and entrepreneurial – our open, iterative design processes and rapid pace of development mean that everyone on the team has the opportunity to make an impact from day one. We are problem solvers who can take projects from idea to implementation. We believe in active mentoring and developing excellence. We collaborate to find the best answers for our customers and for Position Overview: The Blackstone Security Operations – Engineering team is growing to support new cross-functional security needs. The Associate Security Engineer is responsible for providing Security Information and Event Management (SIEM), automation, and security platform engineering support to assist both new cross-team engineering projects and day-to-day SIEM operations / engineering support. The Associate Security Operations Engineer will also participate in Tier 3 security investigations and must have strong working knowledge of incident response procedures and technology. They need to have hands-on experience with SIEM technology; experience implementing / managing security platforms used in a SOC environment is a plus. In addition, they will also be tasked to ensure that our assets meet baseline security standards and that we have the visibility and observability across all assets in the estate.
Requirements
- 3+ years in a hands-on technical role in information security or related field
- 3+ years of infrastructure/software engineering experience with a focus on Cloud technologies
- Experience with cloud native architectures such as AWS, Azure, Office 365 etc.
- Hands-on experience with SIEM (e.g. Splunk) for detection and security orchestration and automated response (SOAR)
- Development/scripting experience (Python and/or PowerShell)
- Proven experience with infrastructure-as-code frameworks (e.g. Terraform Cloud)
- Proven experience working with git source control and CI/CD systems (Jenkins, Gitlab CICD/Runners)
- Proven experience with multiple security event detection platforms (and orchestrating those to a centralized detection platform).
- Experience with containers and orchestration platforms (Kubernetes, AWS ECS)
- Experience with asset hardening (CIS/STIG)
- Experience with Endpoint Detection and Response systems
- Strong written and oral communication skills; effectively explains technical ideas to non-technical individuals at any level
- Strong documentation skills and attention to detail
- B.S. in Computer Science or Engineering or similar technical program
Responsibilities
- Designing and customizing complex SIEM search queries, dashboards, and promoting advance searching, forensics, and analytics
- Design and develop SOAR automations to support response and investigation workflows
- Developing and documenting configuration standards, policies, and procedures for operating security / SIEM platforms
- Perform as technical lead in the development and delivery of custom content, system integration, and event reporting
- Leverage infrastructure-as-code frameworks to provision and maintain cloud resources (Terraform)
- Design, build, and maintain critical security-related systems for CI/CD, secrets management, and other core services
Benefits
- comprehensive health benefits, including but not limited to medical, dental, vision, and FSA benefits
- paid time off
- life insurance
- 401(k) plan
- discretionary bonuses
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
