Security Operations Engineer II

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
• 3–5 years of experience in SOC operations, incident response, or network/security engineering.
• Demonstrated experience supporting telecom and/or collaboration platforms.

Nice To Haves

• Proficiency with SIEM tools (e.g., Splunk, Microsoft Sentinel, QRadar).
• Strong understanding of network protocols, routing, and switching.
• Hands-on experience with firewalls, IDS/IPS, and endpoint detection solutions.
• Familiarity with telecom protocols and enterprise collaboration technologies.
• Solid knowledge of incident response processes and playbooks.
• Scripting or automation skills in Python, PowerShell, or Bash are a plus.
• Strong analytical, troubleshooting, and communication skills.

Responsibilities

• Security Monitoring & Analysis: Monitor, analyze, and correlate alerts, events, and logs from SIEM and other security tools.
• Perform advanced triage and initial investigation of security events to determine severity and business impact.
• Recommend immediate containment and remediation actions, escalating high-severity incidents when necessary.
• Incident Response: Lead investigations of moderate to complex security incidents, including evidence collection and documentation.
• Contribute to containment, eradication, and recovery activities in coordination with senior engineers.
• Conduct root cause analysis and provide recommendations to prevent recurrence.
• Participate in post-incident reviews and help implement process improvements.
• Networking & Infrastructure Support: Monitor, configure, and maintain network security devices such as firewalls, switches, and routers.
• Troubleshoot and resolve connectivity and security-related network issues.
• Document and maintain accurate records of network and infrastructure changes.
• Telecom & Collaboration Platforms: Administer and monitor telecom systems and enterprise collaboration platforms.
• Implement security controls, access policies, and monitoring to ensure platform integrity.
• Investigate and remediate suspicious activities within communication and collaboration environments.
• Partner with IT and vendors to improve reliability, compliance, and resilience of communication systems.
• Provide guidance and training to end users on secure practices.
• Threat Detection & Intelligence: Integrate threat intelligence feeds into monitoring processes.
• Proactively hunt for indicators of compromise (IOCs) across systems and networks.
• Share actionable intelligence with internal teams to improve detection and defense.
• Vulnerability Management: Analyze vulnerability scan results, assess business risk, and recommend remediation priorities.
• Work with system and application owners to remediate vulnerabilities in a timely manner.
• Contribute to reporting and dashboards for vulnerability management metrics.

Benefits

• Company discretionary bonus.
• Health, dental, and vision coverage, employer 401(k) plan and company match, health savings accounts, flexible spending accounts, and voluntary supplemental plans subject to plan terms.
• Company-paid benefits such as life insurance, short-term disability, and long-term disability, subject to applicable waiting periods.
• Paid time off (PTO) or Paid Sick Leave (PSL)