Security Engineer (remote)
About Us:
SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle.
We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!
Hiring for this role is limited to US Citizens only under various Federal laws and regulations
What are we looking for?
At SentinelOne, we know cyber security! Knowing security, we want to ensure exceptional protection to our data and the customer data we process! Our Information Security Team is looking for a Sr. Security Engineer, to configure SIEM, log sources, to analyze suspected threats; administer various infosec systems; while coordinating and reporting on cyber incidents impacting the organization. This position includes critical duties during crisis situations, which may necessitate extended hours of work.
What will you do?
- Lead the next evaluation SIEM project at SentinelOne focused pushing the SIEM to its limits
- Monitor, assess and/or analyze aggregated security log data from various heterogeneous security devices. This includes analysis of logs from:
- SIEM
- IDS/IPS
- Firewall
- Proxies
- End-point malware protection
- Servers and workstations
- Other applications, security technologies and devices
- Providing analysis and trending of security events, alarms, and information from a large number of security devices.
- Taking initiative in evaluating, proposing, and deploying various detection capabilities.
- Clearly, communicate and share your analysis with members of the SOC
- Tune and troubleshoot log file sources and the SIEM to deliver optimal performance in high volume environments.
- Configure and troubleshoot network and security devices, various operating systems, and applications as needed to bring data to SIEM.
- Proactively engage with vendors to work through issues that arise when gathering logs from vendor products.
- Investigate, document and report on information security issues and emerging trends.
- Integrate and share information with other analysts and teams.
- Other tasks and responsibilities as assigned.
What skills and knowledge you should bring?
- Bachelor's degree and applicable, proven experience*
- 3+ years' experience as a Security/Network Administrator or equivalent knowledge.
- Knowledge of various security methodologies and processes, and technical security solutions (SIEM, firewall and intrusion detection systems).
- 3+ years engineering experience with newer SIEM technologies like ELK, Splunk, or Devo,
- Experience with scripting
- Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
- Proficient in writing/developing procedures, work instructions and tickets
- Knowledge of common Internet protocols and applications.
Why us?
You will work on real-world problems and make an impact by protecting our customers from cyber threats. You will joina cutting-edge project and will be able to influence the architecture, design and structure of our core platform. You will tackle extraordinary challenges and work with the very BEST in the industry.
- Medical, Vision, Dental, 401(k), Commuter, and Dependent FSA
- Unlimited PTO
- Paid Company Assigned Holidays
- Paid Sick Time
- Gym membership reimbursement
- Cell phone reimbursement
- Numerous company-sponsored events including regular happy hours and team building events
SentinelOne is shaping the future of endpoint security through its unified, converged platform that automatically prevents, detects, and responds to threats in real-time. Our unique approach is based on deep inspection of all system processes combined with innovative machine learning to quickly isolate malicious behaviors, protecting devices against advanced, targeted threats in real time.
SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
SentinelOne participates in the E-Verify Program for all U.S. based roles.