Security Operations Engineer (Cybersecurity)

TL;DR

Security Operations Engineer (Cybersecurity): Maturing hirify.global’s day-to-day security operations, managing a third-party SOC, operating and tuning the SIEM, and acting as a bridge between IT Helpdesk and Security. Focus on improving detection quality, streamlining alert triage, coordinating incident response, and ensuring security operations scale with the business.

Location: Remote within EMEA

Company

hirify.global is a US-headquartered self-clearing broker-dealer and brokerage infrastructure company, serving financial institutions across 40 countries with institutional-grade APIs.

What you will do

• Own the relationship with the managed Security Operation Center (SOC), focusing on alert quality, escalation workflows, and continuous improvement.
• Operate and maintain the SIEM, including log onboarding, parsing, correlation rules, and alert tuning to enhance signal.
• Ensure critical systems generate appropriate security telemetry, filling gaps across endpoints, identity providers, and cloud platforms.
• Assist with security incidents, coordinating containment, eradication, and recovery with internal teams and external partners.
• Develop and refine incident response playbooks, escalation paths, and communication procedures.
• Act as a security liaison to the IT Helpdesk, ensuring security-related tickets are triaged and resolved efficiently.

Requirements

• 3+ years of experience in Security Operations roles.
• Hands-on experience operating and tuning a SIEM (on-prem or cloud-based).
• Hands-on experience maintaining Kubernetes clusters and working with Linux.
• Proficiency in scripting or automation (Python, Bash) for security operations tasks.
• Experience working with a third-party SOC or MSSP and strong incident response skills.
• Understanding of common attacker techniques and detection methodologies.

Nice to have

• Experience securing financial, trading, or highly regulated platforms.
• Familiarity with compliance frameworks like SOC 2, ISO 27001, or PCI.
• Experience with detection engineering frameworks (MITRE ATT&CK).
• Knowledge of cloud security logging (AWS/GCP/Azure) and SaaS security telemetry.
• Security certifications (GCIA, GCIH, GCED, CISSP, or similar).

Culture & Benefits

• Competitive Salary & Stock Options are offered.
• Health Benefits are provided.
• New hires receive a one-time USD $500 for home-office setup.
• A monthly stipend of USD $150 via a Brex Card is available.
• The team is 100% distributed and remote.