Hiring for this role is limited to US Citizens only under various Federal laws and regulations

What are we looking for?

At SentinelOne, we know cyber security! Knowing security, we want to ensure exceptional protection to our data and the customer data we process! Our Information Security Team is looking for a Sr. Security Engineer, to configure SIEM, log sources, to analyze suspected threats; administer various infosec systems; while coordinating and reporting on cyber incidents impacting the organization. This position includes critical duties during crisis situations, which may necessitate extended hours of work.

What will you do? 

• Lead the next evaluation SIEM project at SentinelOne focused pushing the SIEM to its limits
• Monitor, assess and/or analyze aggregated security log data from various heterogeneous security devices. This includes analysis of logs from:
• SIEM
• IDS/IPS
• Firewall
• Proxies
• End-point malware protection
• Servers and workstations
• Other applications, security technologies and devices
• Providing analysis and trending of security events, alarms, and information from a large number of security devices.
• Taking initiative in evaluating, proposing, and deploying various detection capabilities.
• Clearly, communicate and share your analysis with members of the SOC
• Tune and troubleshoot log file sources and the SIEM to deliver optimal performance in high volume environments.
• Configure and troubleshoot network and security devices, various operating systems, and applications as needed to bring data to SIEM.
• Proactively engage with vendors to work through issues that arise when gathering logs from vendor products.
• Investigate, document and report on information security issues and emerging trends.
• Integrate and share information with other analysts and teams.
• Other tasks and responsibilities as assigned.

What skills and knowledge you should bring?

• Bachelor's degree and applicable, proven experience*
• 3+ years' experience as a Security/Network Administrator or equivalent knowledge.
• Knowledge of various security methodologies and processes, and technical security solutions (SIEM, firewall and intrusion detection systems).
• 3+ years engineering experience with newer SIEM technologies like ELK, Splunk, or Devo,
• Experience with scripting
• Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
• Proficient in writing/developing procedures, work instructions and tickets
• Knowledge of common Internet protocols and applications.

Why us? 

You will work on real-world problems and make an impact by protecting our customers from cyber threats. You will joina  cutting-edge project and will be able to influence the architecture, design and structure of our core platform. You will tackle extraordinary challenges and work with the very BEST in the industry. 

• Medical, Vision, Dental, 401(k), Commuter, and Dependent FSA
• Unlimited PTO
• Paid Company Assigned Holidays
• Paid Sick Time
• Gym membership reimbursement
• Cell phone reimbursement
• Numerous company-sponsored events including regular happy hours and team building events

SentinelOne is shaping the future of endpoint security through its unified, converged platform that automatically prevents, detects, and responds to threats in real-time. Our unique approach is based on deep inspection of all system processes combined with innovative machine learning to quickly isolate malicious behaviors, protecting devices against advanced, targeted threats in real time.