SOC Engineer (Cybersecurity)

TL;DR

SOC Engineer (Cybersecurity): Operating across incident response, platform quality, and operational improvement with an accent on telemetry coverage and response automation. Focus on handling high-severity escalations, improving SIEM detection fidelity, and integrating AI/LLM-based tooling into security workflows.

Location: On-site in Kansas City, MO

Company

hirify.global is an AI-native, automation-first Managed Detection and Response (MDR) provider backed by Andreessen Horowitz.

What you will do

• Lead investigations and drive containment decisions for high-severity, technically complex incidents.
• Automate the evaluation of customer environments to identify and close logging gaps across endpoint, network, identity, and cloud.
• Evaluate detection fidelity, data normalization, and alert logic to improve SIEM and detection quality.
• Collaborate with the SOAR team to refine enrichment logic and containment playbooks from an incident responder's perspective.
• Act as a technical resource for forward-deployed engineers and customers regarding telemetry and platform behavior.
• Identify and resolve friction in analyst workflows to improve SOC tooling and operational consistency.

Requirements

• 5+ years of experience in security operations, incident response, or detection engineering.
• Strong fluency in logging and telemetry across multiple domains.
• Hands-on experience with SIEM platforms such as Google Chronicle, Microsoft Sentinel, or Splunk.
• Solid understanding of SOAR playbook structure, enrichment pipelines, and containment logic.
• Working knowledge of cloud security architecture in AWS, Azure, or GCP.
• Scripting proficiency in Python or PowerShell for automation and integration.

Nice to have

• Multi-cloud breadth across AWS, Azure, and GCP security tooling.
• Experience with IaC (Terraform, CloudFormation) and DevSecOps practices.
• Familiarity with Kubernetes security monitoring and container security.
• Experience building AI-assisted security tooling or agentic workflows.
• Relevant certifications like CISSP, GCIH, GCFE, GCDA, or GREM.

Culture & Benefits

• Opportunity to work with cutting-edge AI-driven cybersecurity and Google SecOps solutions.
• Collaboration within a talented, innovative team focused on continuous improvement.
• Competitive salary and benefits package.
• Culture of growth and development in AI and emerging technologies.
• Strong emphasis on the collaboration and community of in-person work.