Senior Security Operations Engineer (Cybersecurity)

TL;DR

Senior Security Operations Engineer (Cybersecurity): Designing and improving detection and alerting controls for a cloud-native AI healthcare platform with an accent on incident response automation and AI-driven SOC optimization. Focus on leading in-depth investigations, automating incident playbooks, and integrating AI to streamline security workflows.

Location: Must be based in the US and be able to obtain a US Public Trust Clearance (US citizenship required). No visa sponsorship provided.

Company

hirify.global is shifting healthcare from human-first to AI-first through its AI Care platform, providing accessible healthcare and reducing costs for payers and health systems.

What you will do

• Design and continuously improve high-fidelity detection and alerting controls to reduce noise and enable rapid response.
• Build, test, and automate incident response playbooks and runbooks to increase efficiency across the lifecycle.
• Lead in-depth investigations, including root cause analysis and digital forensics, converting findings into actionable insights.
• Proactively engage in threat intelligence and threat hunting to identify new TTPs and enrich existing controls.
• Own incident handling from detection to resolution, collaborating across engineering, IT, and business teams.
• Leverage AI to automate and optimize SOC workflows, including alert triage, enrichment, and incident classification.

Requirements

• Must be able to obtain and maintain a US public trust clearance (US citizenship required).
• Legal right to work in the United States; immigration or work visa sponsorship will not be provided.
• Bachelor’s degree in Computer Science, Cybersecurity, or equivalent professional experience.
• Solid experience in cloud environments (AWS, GCP, or Azure) with a strong understanding of cloud-native threats.
• Proficiency in scripting languages such as Python or Bash for automation and tooling development.
• Hands-on experience with SOC tools including SIEM (Splunk, Sentinel), SOAR, EDR/XDR, and log management.

Nice to have

• Familiarity with security frameworks like NIST 800-61, CIS Controls, MITRE ATT&CK, and ISO 27001.
• Background in threat modeling, adversary emulation, and risk-based alert tuning.
• Experience in digital forensics and preserving digital evidence.

Culture & Benefits

• Remote-first company with flexible working hours and a remote or hybrid work policy.
• Comprehensive health, dental, and vision insurance, plus life and AD&D insurance.
• Financial benefits including a 401(k) and equity shares.
• Unlimited vacation via a discretionary PTO plan.
• Access to health and well-being programs, including free digital therapist sessions for employees and family.