Tier 2 Cybersecurity Engineer - Remote

Overview

The Tier 2 Cybersecurity Engineer will perform advanced investigations and triage of security alerts, lead incident response actions, and collaborate with SOC teams to enhance security operations.

In Short

• Perform advanced investigation and triage of security alerts generated by the SIEM.
• Analyze alerts across endpoint, identity, email, and network telemetry.
• Lead incident response actions including containment and recovery support.
• Monitor and respond to alerts generated by SOC MDR.
• Own Tier 2-level incidents from investigation through resolution.
• Mentor Tier 1 SOC analysts and assist with escalation handling.
• Stay current on emerging threats and tool capabilities.
• Participate in tabletop exercises and incident simulations.
• Document technical findings for both technical and non-technical audiences.
• Recommend improvements to SOC processes and workflows.

Requirements

• 5 or more years of hands-on SOC, IR, or security operations experience.
• Strong understanding of endpoint security concepts and email attack chains.
• Experience with SIEM platforms and endpoint detection tools.
• Valid and current CompTIA Security+ certification.
• Nice to have: GCIH and CompTIA CySA+ certifications.

Benefits

• Excellent health/dental benefits.
• Company paid life insurance policy.
• 128 Hours PTO Every Year.
• Bonuses and salary increase potential via certifications.
• Access to advanced tools and comprehensive training.