Cyber Security Platform Engineer – Cyber Defense
Platform EngineerPlatform EngineerFull TimeRemoteSeniorTeam 10,001+Since 1903H1B SponsorCompany SiteLinkedIn
Location
Michigan
Posted
9 days ago
Salary
$97.1K - $190.5K / year
Seniority
Senior
Bachelor Degree6 yrs expEnglishAnsibleCloudCyber SecurityFirewallsGoogle Cloud PlatformJavaOpen ShiftPythonSDLCTerraformGo
Job Description
• Architect and engineer scalable, cloud-native SIEM solutions, utilizing Infrastructure-as-Code principles to manage log ingestion pipelines and storage.
• Develop and maintain robust data pipelines to ingest, transform, and normalize security logs from diverse endpoints (APIs, cloud platforms, firewalls) into the SIEM, ensuring high data fidelity and low latency.
• Write and optimize custom parsers using Regex and scripting languages to map raw log data to standardized security models, ensuring consistent data structures for analysis.
• Program custom integrations connecting third-party tools and streaming data sources to the SIEM via REST APIs and webhooks.
• Collaborate with DevOps and Application teams to define logging standards and embed security telemetry requirements early in the software development lifecycle (SDLC).
• Manage the full lifecycle of the SIEM platform, including health monitoring, troubleshooting ingestion failures, and debugging parsing errors to ensure 24/7 availability.
• Proactively analyze ingestion volume against capacity limits to identify optimization opportunities, implementing granular log tuning and exclusion rules that minimize licensing costs and maximize the signal-to-noise ratio.
• Engineer automated provisioning workflows using Infrastructure as Code (IaC) to programmatically manage both the underlying infrastructure and complex IAM policies supporting the security platforms.
Job Requirements
- Bachelor’s degree in Computer Science, Cyber Security, Information Systems or related field.
- 6+ years of overall software engineering experience
- 2+ technical experience designing and maintaining scalable security data architectures.
- Skilled in configuring cloud-native security & SIEM/SOAR platforms.
- Experience with security logging, data sources, log parsing & tuning and industry best practices for log ingestion
- Experience administering cloud-native security platforms, with a specific focus on maintaining platform health, troubleshooting configuration issues, and managing complex IAM roles to ensure granular access control.
- 2+ years hands-on development experience on cloud-native platforms, preferably Google Cloud Platform.
- Even better, you may have...**
- Proficiency in scripting languages like Python, Go, Java, or Bash for automation, data manipulation, and integration tasks.
- Hands-on experience setting up CI/CD pipelines. OpenShift Tekton, or GitHub Actions or similar.
- Knowledge of secure coding practices
- Experience setting up serverless functions using GCP Cloud Run or Cloud functions, and configuring the respective service for scaling
- Robust knowledge of system design principles including reliability, availability, and scalability
- Experience setting up logging and monitoring services (Dynatrace, GCP Ops Suites)
- Strong understanding of network security, log analysis, threat detection, and incident response.
- Knowledge of RESTful APIs, data integration techniques, and infrastructure-as-code tools (e.g., Terraform, Ansible).
- Analytical and Problem-Solving Skills:
- Ability to analyze complex data systems, identify improvement opportunities, and translate business requirements into detailed technical designs.
- Excellent analytical skills and attention to detail for solving complex problems with many variables.
- Communication and Collaboration:
- Strong verbal and written communication skills to articulate technical issues, collaborate with stakeholders, and create comprehensive documentation.
- Ability to work effectively in a team environment and interact with various internal and external teams.
- Comfortable supporting multiple client environments and balancing delivery with operations.
- Security & Cloud skills:
- Familiarity with security concepts, cybersecurity frameworks such as NIST, MITRE ATT&CK threat hunting, and cyber threat intelligence.
- Strong technical experience working in multi-cloud platforms, particularly Google Cloud.
Benefits
- Immediate medical, dental, and prescription drug coverage
- Flexible family care, parental leave, new parent ramp-up programs, subsidized back-up child care and more
- Vehicle discount program for employees and family members, and management leases
- Tuition assistance
- Established and active employee resource groups
- Paid time off for individual and team community service
- A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
- Paid time off and the option to purchase additional vacation time.
Related Guides
Related Categories
Related Job Pages
More Platform Engineer Jobs
Platform Engineer9 days ago
Full TimeRemoteTeam 501-1,000Since 2014H1B No Sponsor
Senior Data Platform Engineer architecting high-performance data environments for healthcare analytics
SparkSQL
United States
Platform Engineer – AWS, Rails
CommonLitCommonLit is a nonprofit organization that specializes in educational technology, or EdTech. The startup was established to help students in the United States c
Platform Engineer9 days ago
Full TimeRemote
Platform Engineer amplifying impact through infrastructure and tooling at CommonLit
AWSETLPostgreSQLRubyRuby on Rails
Platform Engineer – Contract
Jun GroupJun means truth. Our ad platform is the honest, efficient way to get millions of people to engage with branded content
Platform Engineer9 days ago
ContractRemoteTeam 51-200H1B Sponsor
Platform Engineer for a technology company automating infrastructure and managing CI/CD pipelines
GrafanaKubernetesTerraform
CloudOne Cybersecurity Engineering - DPaaS
LeidosLeidos is an innovation company rapidly addressing the world’s most vexing challenges in national security and health.
Platform Engineer9 days ago
Full TimeRemoteTeam 10,001+Since 1969H1B Sponsor
The role involves dedicated support and management of IL2 through IL6 cloud environments across AWS, Azure, GCP, and OCI, focusing on design, deployment, configuration, and maintaining cybersecurity authorizations (ATO/IATT) within NIPRNet and SIPRNet. Responsibilities also include developing status reports for senior management, overseeing authorization artifacts in eMASS, implementing security procedures, and providing mentorship to junior staff.
