Job Title: Information Security Operations Engineer
Remote ( US Location)
Duration: 6+ months contract
40 HPW
Role Description:
Information Security Operations Engineer is a member of the Gen Re Security team, who will leverage extensive experience in security operations to oversee and enhance proactive defenses and response capabilities.
The candidate shall work closely with Security and other IT practice leads to ensure that detection logic, incident response workflows, data quality, automation, and team collaboration are continuously improved and effectively managed. The role entails strategic planning, research, testing, and implementation of new solutions, as well as the operation and maintenance of current solutions.
The candidate must have a strong background in technology, security and metrics, and must be highly adaptive.
The candidate must be highly organized and analytical and is expected to partner and mentor effectively with other teams on an ongoing basis.
Specific responsibilities:
- Refine detection logic and improve alert fidelity across platforms such as CrowdStrike, Taegis, and Varonis.
- Enhance incident response workflows and update runbooks to reflect current tooling and evolving threat scenarios.
- Perform gap analysis and coverage mapping to ensure security data quality, log integrity, and timestamp accuracy.
- Implement security automation and orchestration to reduce manual effort and improve operational efficiency.
- Conduct reviews of alerts and enforce effective timely incident investigation.
- Formalize collaboration between offensive and defensive security teams to integrate findings into detection logic and strengthen security posture.
- Monitor and optimize SIEM telemetry to improve detection capabilities and reduce false positives.
- Lead threat hunting initiatives and proactively identify indicators of compromise across enterprise systems.
- Perform end-to-end security incident response, including triage, containment, eradication, recovery, and post-incident analysis.
- Monitor and assess AI-driven tooling and platforms to ensure compliance with governance policies, regulatory requirements, and risk management standards
Experience/Skills Required:
- Proficiency with SIEM, EDR, and Infrastructure as a Service.
- 5+ years of IT Support experience focusing on IT Security and Security Operations.
- Outstanding communication (verbal, written, and listening) and customer service skills.
- Familiarity with IT security controls, protocols, and best practices.
- Ability to interact with all levels of management.
- Self-starter with the ability to work independently and in a team setting.
Education Required:
- Bachelor’s or master’s degree in computer science, information systems or other related field, or equivalent work experience.
- Professional security management certification, such as ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GI
Never miss an opportunity! Create an alert based on the job you applied for.
