Are you a cybersecurity engineer who thrives on the challenge of safeguarding digital assets? Do you possess a deep passion for engineering, configuring, and masterfully managing cutting-edge SIEM and EDR tools? Spring Venture Group is searching for a proactive and highly collaborative Security Engineer to join our elite team in Kansas City. This isn't just about monitoring; it's about building, optimizing, and automating our defenses to stay ahead of sophisticated threats.We're looking for a hands-on engineer with 3+ years of experience who understands that true security comes from meticulous configuration, intelligent rule development, and seamless integration. If you're a problem-solver who enjoys diving deep into logs, crafting custom alerts, and orchestrating automated responses, this is the role for you. You'll be a vital part of protecting our information assets, ensuring the integrity of our systems, and championing a robust security posture across the organization.You'll need strong scripting skills, particularly in Python and/or PowerShell, to excel in this role.Please note: You must currently reside in the Kansas City area. We are unable to provide sponsorship for this role now or in the future.What You'll Engineer and ManageSIEM Mastery: The Brains of Our DefenseYou won't just use our SIEM; you'll be its architect and custodian. You'll be instrumental in:Engineering and optimizing our SIEM solution to ingest, normalize, and analyze security events from diverse sources, transforming raw data into actionable intelligence.Designing, developing, and continually refining SIEM rules, alerts, and dynamic dashboards that provide immediate visibility into emerging threats.Spearheading investigations into security incidents identified by the SIEM, rapidly dissecting alerts to uncover their root cause and impact.EDR Domination: Fortifying Our EndpointsTake ownership of our EDR capabilities, ensuring our endpoints are resilient and responsive. Your responsibilities will include:Deploying, meticulously configuring, and actively managing our Endpoint Detection and Response (EDR) solution across the enterprise.Proactively analyzing EDR alerts, transforming them into actionable insights and leading thorough investigations into potential endpoint security incidents.Developing, implementing, and enforcing robust EDR rules and policies that automatically detect, prevent, and respond to threats at the endpoint level.Orchestrating rapid responses to contain and eradicate endpoint-specific threats, minimizing their impact.Cloud Security Platform Administration: Securing Our Digital FrontierConfigure and maintain our cloud security platforms, ensuring a secure and compliant cloud environment.Monitor and analyze cloud application usage and security events, identifying and mitigating risks.Implement and enforce stringent cloud security policies.Incident Response: On the Front LinesLead and participate in critical incident response activities, from initial investigation to containment and full remediation.Meticulously document incident response procedures and findings to foster continuous improvement.Actively contribute to the ongoing development and enhancement of our incident response plans.Orchestration and Automation: Building Smart DefensesDevelop and implement ingenious security automation scripts and workflows, leveraging your Python and/or PowerShell expertise, streamlining our operations.Integrate diverse security tools and systems to create a cohesive and highly efficient security ecosystem.Utilize orchestration tools to automate incident response and routine security tasks, freeing up valuable time for advanced threat hunting.Vulnerability Management: Proactive DefenseConduct thorough vulnerability scans and assessments, identifying potential weaknesses before they can be exploited.Analyze complex vulnerability reports, expertly prioritizing remediation efforts based on risk and impact.Collaborate seamlessly with IT teams to ensure timely patching and remediation of identified vulnerabilities.Continuously maintain and enhance our comprehensive vulnerability management program.Who You Are:You're more than just a security professional; you're a team player who thrives on collaboration, capable of working seamlessly across various IT teams. Your strong written and verbal communication skills allow you to articulate complex security concepts to both technical and non-technical audiences. You're passionate about security engineering and ready to make a significant impact.If you're eager to take ownership of critical security tools and truly engineer robust defenses, we want to hear from you!
