Security Platforms Engineer

Security Platforms Engineer

Department: Information Technology

Employment Type: Full Time

Location: Redondo Beach

Compensation: $130,000 - $180,000 / year

Description

As a Security Platforms Engineer at Impulse, we are looking for someone to manage, maintain, and optimize enterprise security tools across endpoint, network, cloud, and monitoring environments. This role is responsible for administering platforms such as Microsoft Defender, Wiz CSPM, SIEM solutions, firewall security tools, and other endpoint and cloud security technologies.

The Security Platforms Engineer will ensure security controls are properly implemented, operating effectively, and aligned with organizational security requirements. This person will investigate alerts generated by the SIEM, support security incident analysis, and collaborate closely with the SOC to improve detection logic, tune policies, and onboard relevant log sources for effective monitoring and response.

Responsibilities

• Administer and maintain security platforms, including Microsoft Defender, Wiz CSPM, SIEM tools, firewall security solutions, and other endpoint and cloud security technologies.
• Ensure security controls are implemented, operational, and functioning as intended across cloud, endpoint, and network environments.
• Monitor, triage, and investigate alerts generated by the SIEM and other security tools.
• Partner with the SOC to improve detection coverage, reduce false positives, and enhance alert fidelity.
• Assist in developing, tuning, and maintaining SIEM use cases, correlation rules, dashboards, and detection policies.
• Work with infrastructure, cloud, and application teams to configure and validate log collection and ingestion into the SIEM.
• Support onboarding of new log sources and ensure logging is complete, normalized, and actionable for monitoring and investigations.
• Validate tool health, integration status, and telemetry flow across the security stack.
• Perform regular reviews of security tool configurations and recommend improvements to strengthen visibility and control effectiveness.
• Support incident response activities by providing tool expertise, investigative analysis, and technical troubleshooting.
• Document security tool configurations, processes, alert handling procedures, and operational standards.
• Identify gaps in monitoring, detection, and control coverage, and recommend remediation actions.
• Collaborate with internal stakeholders to support compliance, audit, and risk management requirements related to security tooling and monitoring.

Minimum Qualifications

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field, or equivalent practical experience.
• Experience administering enterprise security tools such as Microsoft Defender, SIEM platforms, firewall security tools, endpoint detection and response tools, and cloud security platforms.

Preferred Skills and Experience

• Hands-on experience investigating security alerts and supporting incident analysis.
• Understanding of log sources, event correlation, detection engineering, and SIEM ingestion pipelines.
• Knowledge of endpoint, network, identity, and cloud security controls.
• Experience with Microsoft security technologies, including Microsoft Defender for Endpoint, Defender for Cloud, or related tools.
• Familiarity with cloud security concepts and tools, including CSPM solutions such as Wiz.
• Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar.
• Familiarity with firewall technologies and network security monitoring.
• Experience tuning detection rules and reducing false positive alerts.
• Knowledge of MITRE ATT&CK, threat detection methodologies, and security operations best practices.
• Relevant certifications such as Security+, CySA+, SC-200, AZ-500, CISSP, GCIA, GCIH, or similar.
• Ability to work cross-functionally with SOC, infrastructure, cloud, and engineering teams.
• Strong troubleshooting, analytical, and documentation skills.

Key Competencies

• Security tool administration
• SIEM monitoring and alert investigation
• Detection tuning and policy enhancement
• Log onboarding and ingestion support
• Cloud and endpoint security
• Cross-functional collaboration
• Incident support and technical analysis

Additional Information:

Compensation bands are determined by role, level, location, and alignment with market data. Individual level and base pay is determined on a case-by-case basis and may vary based on job-related skills, education, experience, technical capabilities and internal equity. In addition to base salary, for full-time hires, you may also be eligible for long-term incentives, in the form of stock options, and access to medical, vision & dental coverage as well as access to a 401(k) retirement plan.

Impulse Space's spacecraft manufacturing business is subject to U.S. export regulations including the International Traffic in Arms Regulations (ITAR) and Export Administration Regulations (EAR). This position requires applicants to be either U.S. Persons (i.e., U.S. citizen, U.S. national, lawful permanent U.S. resident (), an individual granted asylum in the U.S., or an individual admitted in U.S. refugee status) or persons eligible to obtain an export license from the U.S. Departments of State, Commerce, or other applicable U.S. government agencies. Learn more about the ITAR here.

Impulse Space is an Equal Opportunity Employer; employment with Impulse Space is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.