Senior Security Engineer at Ralds & Agate

Mission / Purpose of the Job

• The Senior Security Engineer will be responsible for designing, implementing, and managing security solutions across multiple client environments within a Managed Security Services Provider (MSSP) environment.
• The role focuses on securing client infrastructure, strengthening detection and response capabilities, managing cybersecurity risks, and ensuring compliance with relevant security standards and regulatory requirements.
• This role will work closely with internal teams and client stakeholders to architect secure solutions, lead incident response efforts, optimize security operations, and provide technical advisory support that aligns security initiatives with business objectives.

Job Responsibilities

• Design, deploy, and maintain security infrastructure (SIEM, EDR, SOAR, firewalls, IDS/IPS)
• Architect secure solutions for client environments (cloud, on-prem, hybrid)
• Lead security tool onboarding and integration for new clients
• Develop and maintain security baselines and hardening standards
• Lead investigation and response to security incidents across multiple clients
• Perform advanced threat hunting and forensic analysis
• Develop detection rules and use cases for SIEM platforms
• Coordinate incident response efforts and post-incident reviews
• Conduct vulnerability assessments and risk analysis
• Prioritize remediation efforts based on risk and business impact
• Work with clients to implement patching and mitigation strategies
• Act as a technical security advisor for clients
• Participate in client meetings, reporting, and security reviews
• Translate technical findings into business risk language
• Support pre-sales and solution design activities
• Develop scripts and automation for security operations
• Improve detection capabilities and reduce false positives
• Optimize SOC processes, playbooks, and workflow
• Support compliance frameworks (ISO 27001, PCI-DSS, NIST, etc.)
• Assist clients with audits and regulatory requirements
• Maintain documentation and reporting standards

Qualifications
Education / Business Degree:

• Bachelor’s Degree in Cybersecurity, Computer Science, Information Technology, or a related course of study.
• Relevant professional cybersecurity certifications such as CISSP, CEH, GIAC, or equivalent will be an added advantage.
• Cloud security certifications (e.g., AWS Security Specialty, Azure Security Engineer) are preferred.

Work Experience:

• Minimum of 5–8 years’ relevant experience in cybersecurity engineering, security operations, or related roles.
• Prior experience within an MSSP, SOC, or cybersecurity consulting environment is preferred.
• Demonstrated experience with SIEM platforms such as Splunk, Microsoft Sentinel, or QRadar.
• Hands-on experience with EDR/XDR solutions, threat detection, and incident response activities.
• Strong exposure to cloud security environments including AWS, Azure, or GCP.
• Experience conducting vulnerability assessments, risk analysis, and security remediation initiatives.
• Demonstrated experience in scripting and automation using Python, PowerShell, or Bash.

Knowledge:

• Strong understanding of cybersecurity architecture, engineering, and security operations
• Knowledge of SIEM, EDR/XDR, SOAR, firewalls, IDS/IPS, and related security technologies
• Strong understanding of threat landscapes, attacker methodologies, and MITRE ATT&CK framework
• Knowledge of vulnerability management, risk assessment, and incident response processes
• Understanding of cloud security principles across AWS, Azure, and hybrid environments
• Knowledge of cybersecurity governance, compliance frameworks, and regulatory standards including ISO 27001, PCI-DSS, and NIST
• Understanding of networking concepts including TCP/IP, VPNs, proxies, and firewall technologies

Skills:

• Strong analytical and problem-solving capability
• Excellent communication and stakeholder management skills
• Ability to conduct threat hunting, forensic investigations, and incident response activities
• Proficiency in scripting and automation using Python, PowerShell, or Bash
• Ability to design and implement enterprise security solutions across diverse environments
• Strong client advisory and technical presentation capability
• Ability to optimize SOC processes, workflows, and operational efficiency
• Strong documentation, reporting, and technical writing capability
• Ability to manage multiple priorities within fast-paced, multi-client environments

Behavioral Attributes:

• High level of accountability, ownership, and professionalism
• Strong leadership and mentoring capability
• High attention to detail and commitment to operational excellence
• Ability to remain composed and decisive during security incidents and high-pressure situations
• Adaptability and responsiveness within dynamic environments
• Strong collaboration and teamwork capability across cross-functional teams
• Proactive mindset with a continuous improvement orientation
• Strong ethical standards and integrity in handling sensitive information
• Demonstrates initiative, sound judgment, and solution-oriented thinking