Binary Defense is seeking a talented Principal Security Engineer. Primary responsibilities will include, but not be limited to, the architecture, deployment, configuration, and management of separate SIEM instances for our clients, as well as the responsibility of security use-case development and alert configuration. CrowdStrike NextGenSIEM experience a plus.

Principal Security Engineers work closely with our clients as well as our SOC analysts to ensure systems and alerts are properly configured and understood appropriately for accurate alert escalation. Principal Security Engineers must demonstrate intuitive problem-solving skills, the ability to mentor and lead other security engineers, have proficient information security knowledge, as well as a strong broad technical background.
 

Responsibilities

• Architecting, administrating, and maintaining SIEM instances for clients as well as internal instances.
• Evaluating applications within a client environment and prioritizing critical data sources based on security value and license impact.
• Provide guidance on types of logs/events to collect from devices that will be most useful for security purposes .
• Determining best method for log collection and assisting clients with forwarding security logs to specified SIEM platform.
• Participate in weekly project meetings, both internal and client facing.
• Work closely with the Project Coordinator to ensure projects stay on track and critical tasks are completed in a timely manner.
• Participate in weekly rotating on-call schedule.
• Strong customer ownership skills.
• Ability to drive and deliver outcomes for complex customer initiatives. 
• Ability to lead a team of engineers in order to complete large-scale projects.
• Other duties, as assigned by direct manager

• Hands on experience in managing, configuring, and deploying SIEMs in a professional environment. CrowdStrike NextGenSIEM a plus.
• Strong and demonstrable knowledge in various areas of information security and their best practices.  Current working knowledge of threats and how to detect them would be ideal.
• Solid foundation of IT knowledge and familiarity with system administration of Windows and various networking technologies.
• Experience with Query Languages KQL, SPL, YARA-L
• Experience managing Splunk, MS Sentinel, Google Sec-Ops SIEM environments.
• Customer onboarding experience
• Solid experience with PowerShell, and other scripting languages
• Excellent written and oral communication skills

About Binary Defense

Binary Defense is a leading Managed Detection and Response (MDR) provider, trusted by hundreds of organizations to protect what matters most. Our team of SOC analysts, threat hunters, detection engineers, and threat researchers work around the clock to deliver proactive, risk-focused security outcomes. We bring the attacker's mindset to defense, helping clients detect threats earlier, respond faster, and continuously improve their security posture.

For more information, visit our website, check out our blog, or follow us on LinkedIn.

Binary Defense offers competitive medical, dental and vision coverage for employees and dependents, a 401k match which vests every payroll, a flexible and remote friendly work environment, as well as training opportunities to expand your skill set (to name a few!). If you’re interested in joining a growing team with great perks, we encourage you to apply!